7 Mar
2012
7 Mar
'12
12:59 a.m.
Craig Sanders wrote:
On Wed, Mar 07, 2012 at 11:25:12AM +1100, Craig Sanders wrote:
3. a certificate signed by several (the more the better) other certificates in a large web of trust.
DNSSEC + DANE looks pretty good too.
+1.
which links to Marlinspike's web-of-trust style plugin for firefox: http://convergence.io/
Which makes me wonder (again) why we're still doing authentication and encryption at the application layer instead (TLS) of at the internet layer (IPsec).