[Standards-JIG] Depricating DialBack w/ new CA
Matthias Wimmer
m at tthias.eu
Wed Jan 10 04:16:37 CST 2007
JD Conley schrieb:
> My vote is to keep it around indefinitely. It fosters federation without
> the headaches of key/cert management. Even with the JSF being a cert
> authority you still have to request the certs, which is a manual and
> tedious process requiring some sort of out of band validation – email,
> etc. TLS (untrusted) + DNS (for trust) + Dialback is good enough
> security for 99% of the people out there.
+1
(Not that I like dialback, but I think we still need it for the above
reasons.)
--
Matthias Wimmer Fon +49-700 77 00 77 70
Züricher Str. 243 Fax +49-89 95 89 91 56
81476 München http://ma.tthias.eu/
More information about the Standards
mailing list