-- On Thu, 15 Jan 1998, James A. Donald wrote:

...

If you try and shove that identity stuff onto people they will not do it. Too much like hard work. They will happily let the government licensed authorities do it for them. The PGP model clearly has not flown yet, and it is not going to fly.

At 02:16 PM 1/15/98 -0500, Ray Arachelian wrote:

IMHO, this is pure grade A bullshit. If you included PGP in MsMail, and Eudora and pine and elm from the get go, everyone would use it.

Proven false by experiment: Observe what happened with Verisign and MIME. The cost is not signing your stuff. The cost is setting up a key and publishing it, and getting other peoples keys and verifying them. Integration with Eudora makes it trivial to sign and to decrypt, *after* you have created and uploaded a key, and downloaded and verified other peoples keys, which is not trivial. People would rather the kindly benevolent government did that hard stuff for them. Verisign/MIME is *already* integrated into everyone's mailers, and they are not using it because Verisign key management is too hard, and Verisign key management is arguably more user friendly than PGP key management, though clearly less user friendly than Crypto Kong's (lack of) key management. --digsig James A. Donald 6YeGpsZR+nOTh/cGwvITnSR3TdzclVpR0+pr3YYQdkG s/7IS+OXDf+elZBg6ff+1Sq4aO4aoy9DRhH58rhP 4HFsRTnHTjnMnwGwjenI4jPJsM/0cy02LwoJAtbQ8 --------------------------------------------------------------------- We have the right to defend ourselves and our property, because of the kind of animals that we are. True law derives from this right, not from the arbitrary power of the state. http://www.jim.com/jamesd/