[Cryptography] Anonymous rendezvous (was Business opportunities in crypto)

John Levine johnl at iecc.com
Mon May 10 11:13:33 EDT 2021


It appears that jrzx <jrzx at protonmail.ch> said:
>Let us consider a case that is *not* going away.  You want
>to get on your employer's physical network, you want to connect
>to the correct vpn, from the other side of the world.
>
>By and large, you don't rely on a CA to identify your employer,
>but on a public key or shared secret key you physically received
>from your employer.
>
>When I log on to a financial institution, I generally use a
>physical device to identify myself, either I plug a device
>into a usb port, or my device generates an eight digit single
>use password.
>
>Given that physical infrastructure, why should it not support
>mutual authentication?  If you went in person to the bank, and
>they in person gave you a card with a chip, it would not be hard
>to have the chip, rather than the certificate authority, know
>the chip's home.

Now I have no idea what point you are trying to make.  Two days ago, someone
who appeared to be you said:

>By now, however, all the important reputations are established *on* the web, so
>moving existing reputations to the web no longer matters.

Now you're listing ways (reasonable ones) that a physical entity can use to move
its reputation to the web.  Huh?



-- 
Regards,
John Levine, johnl at taugh.com, Primary Perpetrator of "The Internet for Dummies",
Please consider the environment before reading this e-mail. https://jl.ly


More information about the cryptography mailing list