[thelist] Digital Signature of Documents
Eduardo Kienetz
eduardok at gmail.com
Fri Mar 7 08:38:16 CST 2008
On Fri, Mar 7, 2008 at 1:32 AM, Ken Schaefer <Ken at adopenstatic.com> wrote:
> -----Original Message-----
> From: thelist-bounces at lists.evolt.org [mailto:thelist-bounces at lists.evolt.org] On Behalf Of Daniel Burke
> Sent: Friday, 7 March 2008 4:57 PM
> To: thelist at lists.evolt.org
> Subject: Re: [thelist] Digital Signature of Documents
>
> > The whole purpose of private keys is that they're private.
> > Personally, if someone issues me a private key, I'll burn it right
> > there and then.
>
> Really? So when you work in an organisation, and they issue you with a smartcard or similar certificate for authentication, you "burn it right there and then"?
Actually, that is exactly one important point in PKI. The private key
should be 'distributed' through a physical medium, and not online
(there are so many issues with downloading something: browser caching,
proxy servers, etc).
Carlos, is workflow software you use today open source?
--
Eduardo Bacchi Kienetz
LPI Certified - Level 2
http://www.noticiaslinux.com.br/eduardo/
http://eduardo.intercambista.blog.br
More information about the thelist
mailing list