Re: D-AR006.7 discussion points from Mark Baker on 2002-05-07 (www-ws-arch@w3.org from May 2002)

From: Mark Baker <distobj@acm.org>
Date: Tue, 7 May 2002 18:06:42 -0400
To: Joseph Hui <Joseph.Hui@exodus.net>
Cc: www-ws-arch@w3.org
Message-ID: <20020507180642.D12037@www.markbaker.ca>

On Tue, May 07, 2002 at 02:29:38PM -0700, Joseph Hui wrote:
> > That is very different than saying that PKI should be used.  The use
> > of public keys does not require PKI.
> 
> D-AR006.7 doesn't say or imply PKI should be used.  Note the mention
> of KDC there.

Ok, I meant "KI". 8-)  I don't believe we need to require centralization
of key storage.  I'd prefer a more Web friendly approach of just giving
each key a URI, and allowing me to GET it (and returning 401 or 403 on
secret keys, for example).

MB
-- 
Mark Baker, Chief Science Officer, Planetfred, Inc.
Ottawa, Ontario, CANADA.      mbaker@planetfred.com
http://www.markbaker.ca   http://www.planetfred.com

Received on Tuesday, 7 May 2002 17:59:04 UTC