[cryptography] Tell Grandma to remember the Key ID and forget the phone number. [was: Re: Let's go back to the beginning on this]
James A. Donald
jamesd at echeque.com
Wed Sep 28 15:00:01 EDT 2011
On 2011-09-27 5:55 AM, Jon Callas wrote:
> You can replace certification if you replace it with certification. Failing that, it's hard. Memorizing key IDs does work, but leaves as another security hole the DNS system. Of course, the true way to do it is to get the users to memorize IP addresses and key IDs.
Need a system where KeyID provides automatic lookup of IP.
More information about the cryptography