[thelist] Digital Signature of Documents

Ken Schaefer Ken at adOpenStatic.com
Fri Mar 7 00:32:14 CST 2008

-----Original Message-----
From: thelist-bounces at lists.evolt.org [mailto:thelist-bounces at lists.evolt.org] On Behalf Of Daniel Burke
Sent: Friday, 7 March 2008 4:57 PM
To: thelist at lists.evolt.org
Subject: Re: [thelist] Digital Signature of Documents

> The whole purpose of private keys is that they're private.
> Personally, if someone issues me a private key, I'll burn it right
> there and then.

Really? So when you work in an organisation, and they issue you with a smartcard or similar certificate for authentication, you "burn it right there and then"?

> The only private key I trust is one I generate myself.

But oddly enough, organisation (or partner org or whatever doesn't trust you)

> WHOA there's a big problem....

No, not really.

I think you need to reread what the purpose of this PKI is for.


More information about the thelist mailing list