[cap-talk] network level designation and authorization
Sandro Magi
smagi at naasking.homeip.net
Thu Jun 8 09:27:51 EDT 2006
coderman wrote:
> On 6/7/06, John Carlson <john.carlson3 at sbcglobal.net> wrote:
>> ...
>> I don't think that people are referring to SSL in it's traditional
>> form. From what
>> I've seen, they prefer stuff like self signed certificates...a lot
>> like SSH and GPG.
>
> agreed; i prefer decentralized and/or opportunistic methods over PKI
> like hierarchy in almost every case.
>
> but how does this tie to HTTP requests and other stream transport
> privacy? in every instance where communication privacy is referenced
> with YURL's and the like it seems to imply SSL/TLS, if not explicitly
> stated as the answer.
Only for backwards compatibility IMO. Ideally, we can remove the need
for the trusted third party of the CA model via the httpsy scheme
(http://www.waterken.com/dev/YURL/httpsy/).
Sandro
More information about the cap-talk
mailing list