- From: Melvin Carvalho <melvincarvalho@gmail.com>
- Date: Thu, 26 Jan 2012 18:32:02 +0100
- To: Joe Presbrey <presbrey@gmail.com>
- Cc: public-webid@w3.org, Henry Story <henry.story@bblfish.net>
On 26 January 2012 18:08, Joe Presbrey <presbrey@gmail.com> wrote: > Hi all, > > I caught up with Henry in a quick chat earlier about this and will let > you know a quick summary. Of course we all agree on extending the > trust network via URIs, resolving, issues and signers, cosigners, > freedom and liberty boxes, server clients, etc. all day long. In > addition: > > 1) we should distinguish old keys from current keys with status, > issuer, date, and/or other properties of the key in our profiles > > 2) expired self-signed WebIDs should not "go out with the trash", if a > hacker finds it, they can pretend they are you unless (1) > > 3) we should regard x509 properties in addition to (1) while WebID is > delivered via x509, but prefer LD mechanisms to be compatible with > other containers and transports Just a note, I have a 100 year duration and strong passphrase on my key to avoid some of these issues. Note even if someone got my private key file, they still dont have my passphrase > > Best, > > -- > Joe Presbrey > > > On Thu, Jan 26, 2012 at 11:40 AM, Henry Story <henry.story@bblfish.net> wrote: >> yes make sense +1 - just add Summary to front of the e-mail subject. >> I think it would be good if each thread had a little summary. >> >> On 26 Jan 2012, at 17:35, Joe Presbrey wrote: >> >>> I drafted this summary email, if it looks good to you, do you want to send it? >
Received on Thursday, 26 January 2012 17:32:29 UTC