[Discuss] the problem with centralized certificate authorities

[Richard Pieri]

Tom Metro wrote:
> (The author is now proposing "a working group to kill X.509.")
>
> (Not a novel idea. An example older article:
> http://blog.cryptographyengineering.com/2012/02/how-to-fix-internet.html )

This is based on the premise that the Internet -- specifically X.509 PKI 
-- is broken. Which it isn't. It works precisely as the NIST designed it 
to work. What's broken is the idea that X.509 has anything to do with 
securing personal communications.

-- 
Rich P.