[ppml] Policy Proposal 2007-1 - Staff Assessment
kkargel at polartel.com
Mon Apr 16 11:18:24 EDT 2007
Actually the way the Thawte WoT system works is that it allows web
signup for creation of the key files, but requires a physical meeting
and examination of paper credentials (drivers license, passport, etc)
for "notarization" of the key. I like the multi-level (casual/official)
method where you can choose whther or not to trust the casual certs.
Off topic so that's all the time I'll take.
> -----Original Message-----
> From: ppml-bounces at arin.net [mailto:ppml-bounces at arin.net] On
> Behalf Of michael.dillon at bt.com
> Sent: Monday, April 16, 2007 9:48 AM
> To: ppml at arin.net
> Subject: Re: [ppml] Policy Proposal 2007-1 - Staff Assessment
> > The pgp (or other certificate method) would be simpler for the user
> > once implemented, and would probably be the method of choice, but
> > there are times that I am caught away from my normal resources and
> > need to do "stuff" , where alternate methods come in handy.
> I have found that the phone works well in such sitiuations.
> After all, we're not trying to produce a razzle-dazzle crypto
> authentication show here, just implement good business practices.
> > I do much like the Thawte Web of Trust (WoT) personal email
> > signatures, which are easily implemented in current email clients
> > (like the microsoft variants) and allow
> authenticated/encrypted email
> > without needing to add a plugin or run a separate program.
> The Thawte web pages don't give much info on how this works
> and they require you to sign up before you can read their
> "free" guide. No thank you. This is likely some web-based
> system and if we are going to go down that route, it is
> better to use an SSL web server with a RESTful API.
> --Michael Dillon
> This message sent to you through the ARIN Public Policy
> Mailing List (PPML at arin.net).
> Manage your mailing list subscription at:
More information about the ARIN-PPML