Re: trusted certificates and trusted repositories

Anne & Lynn Wheeler <lynn@garlic.com> writes:
> The offline era tends to focus on the resistance of the
> credential/certificates to forgery or counterfeiting (degree of
> confidence that relying parties could trust the
> credential/certificate). A different kind of example is the
> educational certificates from diploma mills.

one might even be tempted to claim that pre-occupation with the value
of SSL certificates has obfuscated the certification operations that
the certificates are suppose to represent (aka is the certification
the thing of value or does the certificate, which is supposedly just
one way of representing that certification, have its own value
unrelated to the certified information). this may have contributed to
situations where consumers are perfectly comfortable with websites
that have valid SSL certificates ... even tho the websites may have
been created for purely fraudulent objectives.

misc. past posts on ssl certificates
http://www.garlic.com/~lynn/sslcerts

ref:
http://www.garlic.com/~lynn/2006f.html#15 trusted certificates and trusted repositories
http://www.garlic.com/~lynn/2006f.html#16 trusted repositories and trusted transactions

-- 
Anne & Lynn Wheeler | http://www.garlic.com/~lynn/