[Security] About the Firefox 3 Security Dialog & others

Dave Cridland dave at cridland.net
Fri Aug 22 12:12:09 CDT 2008


On Fri Aug 22 17:32:51 2008, Jonathan Schleifer wrote:
> Dave Cridland <dave at cridland.net> wrote:
> > Well, what makes sense to me is to have X.509 and GPG/PGP. I'd  
> lean
> > toward X.509 as MTI, and GPGPGP as a strongly-worded-MAY. Both  
> these
> > are supported within TLS, as I udnerstand things (which is, of
> > course waaaay less than some here).
> 
> But then we won't have something like SAS, which is absolutely
> mandatory if we want it to be Average Joe compatible ;).

Average Joe compatible is, I suspect, using leap-of-faith, but  
anyway, yes, we absolutely can have a number of verification options,  
including, as I said in my previous message, something "which could  
look very, very like the SAS".

Dave.
-- 
Dave Cridland - mailto:dave at cridland.net - xmpp:dwd at dave.cridland.net
  - acap://acap.dave.cridland.net/byowner/user/dwd/bookmarks/
  - http://dave.cridland.net/
Infotrope Polymer - ACAP, IMAP, ESMTP, and Lemonade


More information about the Security mailing list