[cryptography] Security Pop-Up of the Day

James A. Donald jamesd at echeque.com
Wed Sep 21 21:37:41 EDT 2011

On 2011-09-22 5:08 AM, ianG wrote:
> All email client vendors had to do to give smime a chance in life was to
> make it easy to generate and use a cert. Automatically. Add an account,
> generate a cert. The rest can follow in due course...
> Dunno why, but the architecture seems to be an exercise in won't work.
> Is it possible that nobody really wanted smime to work?

They wanted it to work, but it was designed by committee.   A committee 
is always at least as stupid as its dumbest member, and usually more 
stupid, and at least as corrupt as its most corrupt member, and usually 
more corrupt.

More information about the cryptography mailing list