[cap-talk] MinorFs & ssh secret keys

James A. Donald jamesd at echeque.com
Tue Jul 8 17:41:22 CDT 2008


Rob Meijer wrote:
> Possibly an example of MinorFs and 2rulethemall would be usefull in order
> for you all to understand the practical use and usage.

This seems an example of the unix error and an example of the 
cryptographic tool error.

You have the end users directly managing keys through a command line 
interface.  End users are never going to manage keys, let alone through 
a command line interface.

The Unix error is to provide an incomprehensible command line interface 
that requires inordinate user effort to memorize and use.

The cryptographic tool error is to provide a cryptographic tool to end 
users is that there is no demand for cryptographic tools by end users. 
People naively think that what they do is secure, and they want the 
existing tools that accomplish their purposes to magically have the 
security properties that they naively expect them to have.  Thus, for 
example, Skype encrypts all skype to skype communications without the 
user ever knowing or thinking about cryptography.



More information about the cap-talk mailing list