Johannes Bauer <dfnsonfsdu...@gmx.de>: > I dislike CAs as much as the next guy. But the problem of distributing > trust is just not easy to solve, a TTP is a way out. Do you have an > alternative that does not at the same time to providing a solution > also opens up obvious attack surface?
Here's an idea: an authentication is considered valid if it is vouched for by the United States, China, Russia *and* the European Union. Those governments are the only entities that would have the right to delegate their respective certification powers to private entities. The governments would also offer to certify anybody in the world free of charge. Marko -- https://mail.python.org/mailman/listinfo/python-list