[thelist] Digital Signature of Documents

Ken Schaefer Ken at adOpenStatic.com
Fri Mar 7 02:34:10 CST 2008


-----Original Message-----
From: thelist-bounces at lists.evolt.org [mailto:thelist-bounces at lists.evolt.org] On Behalf Of Daniel Burke
Subject: Re: [thelist] Digital Signature of Documents

> I was under the impression that it was for the signing of documents.
> So you think it is a good idea that the sysadmin is able to sign
> things in your name?

At some point, you have to trust your administrators.

How far you trust them depends on how much is at risk from a security incident. Because the less you trust them, the most expensive it becomes to ensure that they can't subvert some system.

In security, there are no absolutes. Saying that you can never trust a key pair generated by someone else is an absolute that simply doesn't apply in 100% of situations.

Cheers
Ken



More information about the thelist mailing list