[Discuss] Why the dislike of X.509?

markw at mohawksoft.com markw at mohawksoft.com
Tue Aug 26 13:01:43 EDT 2014


> On 8/26/2014 10:37 AM, markw at mohawksoft.com wrote:
>> *any* shared or distributed authority has the same issue.
>
> Shared is not distributed.

Which is why I used "or" between them.

> Shared means more than one entity has
> authority. Each entity is a point of compromise for the entire system.

Or at least the systems that share the authority.
>
> Distributed means no single entity has authority; a quorum or a
> unanimous consensus is required. Compromise of one entity does not
> compromise the entire system.

There is no such thing as a security system that has "one" entity, well,
perhaps a stone or a brick. There is *always* at least one mechanism that
protects and one mechanism that provides access.





>
> --
> Rich P.
> _______________________________________________
> Discuss mailing list
> Discuss at blu.org
> http://lists.blu.org/mailman/listinfo/discuss
>





More information about the Discuss mailing list