Re: Who generates AOCE keys?
Christian Odhner wonders:
Well, what keeps people from makeing keys with somebody else's name/user id on them and sending them in to be certified? Where is the authentication from the key certifier's point of view?
The pass phrase. -- Lefty (lefty@apple.com) C:.M:.C:., D:.O:.D:.
Christian Odhner wonders:
Well, what keeps people from makeing keys with somebody else's name/user id on them and sending them in to be certified? Where is the authentication from the key certifier's point of view?
The pass phrase.
-- Lefty (lefty@apple.com) C:.M:.C:., D:.O:.D:.
And who chooses the pass phrase, and how is it transmited between parties,
and how is it linked to the keypair/user (is the key encrypted with it
like pgp?) ?
Just thinking some more...
participants (2)
-
Christian D. Odhner
-
lefty@apple.com