IETF Logo Mail Archive

Re: [saag] Or grow a real PKI (Re: SHA-1 to SHA-n transition)

Stephen Kent <kent@bbn.com> Tue, 03 March 2009 18:53 UTC

Return-Path: <kent@bbn.com>
X-Original-To: saag@core3.amsl.com
Delivered-To: saag@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 39A8E3A69C0 for <saag@core3.amsl.com>; Tue, 3 Mar 2009 10:53:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.345
X-Spam-Level:
X-Spam-Status: No, score=-2.345 tagged_above=-999 required=5 tests=[AWL=0.254, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Wlm2-QPGQVPm for <saag@core3.amsl.com>; Tue, 3 Mar 2009 10:53:51 -0800 (PST)
Received: from mx3.bbn.com (mx3.bbn.com [128.33.1.81]) by core3.amsl.com (Postfix) with ESMTP id F1A683A69BB for <saag@ietf.org>; Tue, 3 Mar 2009 10:53:50 -0800 (PST)
Received: from dommiel.bbn.com ([192.1.122.15] helo=[10.34.4.253]) by mx3.bbn.com with esmtp (Exim 4.63) (envelope-from <kent@bbn.com>) id 1LeZku-0002sm-A1; Tue, 03 Mar 2009 13:54:16 -0500
Mime-Version: 1.0
Message-Id: <p0624080fc5d32caf7188@[10.34.4.253]>
In-Reply-To: <2788466ED3E31C418E9ACC5C3166155768B2EE@mou1wnexmb09.vcorp.ad.vrsn.com>
References: <20090227022359.8D45150822@romeo.rtfm.com> <20090302161134.GG9992@Sun.COM> <20090302172135.DA43650822@romeo.rtfm.com> <200903021720.n22HKZOv006388@grapenut.srv.cs.cmu.edu> <864C82388E530D27DCB6002F@minbar.fac.cs.cmu.edu> <20090302182547.GX9992@Sun.COM> <0DE6E86D395C657BABF43B97@minbar.fac.cs.cmu.edu> <20090302185050.GB9992@Sun.COM> <20090302205656.GF9992@Sun.COM> <2788466ED3E31C418E9ACC5C3166155768B2EC@mou1wnexmb09.vcorp.ad.vrsn.com> <20090303163002.GA9992@Sun.COM> <2788466ED3E31C418E9ACC5C3166155768B2EE@mou1wnexmb09.vcorp.ad.vrsn.com>
Date: Tue, 03 Mar 2009 13:53:05 -0500
To: "Hallam-Baker, Phillip" <pbaker@verisign.com>
From: Stephen Kent <kent@bbn.com>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Cc: saag@ietf.org, Nicolas Williams <Nicolas.Williams@sun.com>
Subject: Re: [saag] Or grow a real PKI (Re: SHA-1 to SHA-n transition)
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Mar 2009 18:53:52 -0000

At 9:04 AM -0800 3/3/09, Hallam-Baker, Phillip wrote:
>Content-class: urn:content-classes:message
>Content-Type: multipart/alternative;
>	boundary="----_=_NextPart_001_01C99C22.4DD0C516"
>
>Governments can regulate PKIs to be employed for government purposes.
>

A government can regulate CAs that operate in its country, for ANY 
purpose, if so desires.

But, I already noted that this outcome is likely in the U.S. or the EU.

Steve

v2.23.0 | Report a Bug | By Email