The state-level attack on the SSL CA security model

• Previous message (by thread): The state-level attack on the SSL CA security model
• Next message (by thread): The state-level attack on the SSL CA security model
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mar 25, 2011, at 12:19 52PM, Akyol, Bora A wrote:

> One could argue that you could try something like the facebook model (or facebook itself). I can see it coming.
> Facebook web of trust app ;-)
> 
Except, of course, for the fact that people tend to have hundreds of "friends", many of whom they don't know at all, and who achieved that status simply by asking.  You need a much stronger notion of interaction, to say nothing of what the malware in your "friends'" computers are doing to simulate such interaction.

		--Steve Bellovin, http://www.cs.columbia.edu/~smb

• Previous message (by thread): The state-level attack on the SSL CA security model
• Next message (by thread): The state-level attack on the SSL CA security model
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]