[Cryptography] The business of web hosting, was Commercial PKI as dog poop
jrzx
jrzx at protonmail.ch
Tue May 18 05:03:23 EDT 2021
On Sunday, May 16, 2021 9:23 AM, John Levine <johnl at iecc.com> wrote:
> A bank or any organization has a bunch of employees and
> contractors whose roles and authorities are defined by law
> and contract and to some extent custom.
To do business over the internet requires trusting people,
but not unlimited trust.
You don't want to trust people more than you need to.
You don't want to *need* to trust people more than you
have to.
The point and purpose of asymmetric rather than symmetric
encryption is to reduce the amount of trust required.
If your website has a CDN certificate, you are being asked
to trust considerably more than you should be asked.
And, in practice, banks and such *don't* use CDN certificates.
And neither would I.
More information about the cryptography
mailing list