[Ach] heads up: concerning PKIs

L. Aaron Kaplan kaplan at cert.at
Mon Dec 16 14:47:56 CET 2013


I am currently going through the whole document and we are still missing the  PKI section. But since we are nearing a deadline for releasing the document to reviewers -- unless more text comes until tonight, I am considering adding this sentence to the disclaimer:

This guide does not talk about the well-known insecurities of trusting a
public-key infrastructure (PKI)\footnote{Interested readers are referred to
\url{https://bugzilla.mozilla.org/show_bug.cgi?id=647959} or
\url{http://www.heise.de/security/meldung/Der-ehrliche-Achmed-bittet-um-Vertrauen-1231083.html} (german)
which brings the problem of trusting PKIs right to the point}. Nor does this text explain how to run your own Certificate Authority (CA). 

A general remark: in the meetings we said a couple of times that we will add sections and see if they get filled up.
If not, then we will add it in version 2.  No problem. We can't achieve everything at once. All of us are aware of this. So, no stress please. I'd rather have less but at a higher quality (than now) and extend the topics covered later.


// L. Aaron Kaplan <kaplan at cert.at> - T: +43 1 5056416 78
// CERT Austria - http://www.cert.at/
// Eine Initiative der nic.at GmbH - http://www.nic.at/
// Firmenbuchnummer 172568b, LG Salzburg

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 163 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.cert.at/pipermail/ach/attachments/20131216/c0520cc5/attachment.sig>

More information about the Ach mailing list