[Standards-JIG] Depricating DialBack w/ new CA

Matthias Wimmer m at tthias.eu
Wed Jan 10 10:16:37 UTC 2007


JD Conley schrieb:
> My vote is to keep it around indefinitely. It fosters federation without 
> the headaches of key/cert management. Even with the JSF being a cert 
> authority you still have to request the certs, which is a manual and 
> tedious process requiring some sort of out of band validation – email, 
> etc. TLS (untrusted) + DNS (for trust) + Dialback is good enough 
> security for 99% of the people out there.

+1

(Not that I like dialback, but I think we still need it for the above 
reasons.)


-- 
Matthias Wimmer      Fon +49-700 77 00 77 70
Züricher Str. 243    Fax +49-89 95 89 91 56
81476 München        http://ma.tthias.eu/




More information about the Standards mailing list