FW: [Dundi] DUNDi popularity

Michael Richardson mcr at sandelman.ottawa.on.ca
Fri Oct 13 09:24:11 MST 2006 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


>>>>> "Anders" == Anders Brownworth <abrownworth-dundi at bandwidth.com> writes:
    Anders> It seems to me an IP might be too little to go on. I suppose
    Anders> an X.509 encryption layer in the protocol would remove any
    Anders> ambiguity, but then we forfeit some of the distributed
    Anders> nature of the system because we would require a certificate
    Anders> authority. But without a central authority of some sort,
    Anders> it's hard to see how we could eliminate error or fraud by
    Anders> purely technical means. Might be interesting to get a number
    Anders> of entities with 
    Anders> SS7 presence to validate possibly on an ongoing basis. I hate
    Anders> centralized, but...

  You need the PGP model instead.
  Every DUNDi node needs to be a CA/signer. You can have web-of-trust.

  You may also want to look at SPKI:
  (Rivest= R of RSA, Ylonen=SSH)

2692 SPKI Requirements. C. Ellison. September 1999. (Format: TXT=29569
     bytes) (Status: EXPERIMENTAL)

2693 SPKI Certificate Theory. C. Ellison, B. Frantz, B. Lampson, R.
     Rivest, B. Thomas, T. Ylonen. September 1999. (Format: TXT=96699
     bytes) (Status: EXPERIMENTAL)

- -- 
]            Bear: "Me, I'm just the shape of a bear."          |  firewalls  [
]   Michael Richardson,    Xelerance Corporation, Ottawa, ON    |net architect[
] mcr at xelerance.com      http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Finger me for keys

iQEVAwUBRS+9p4CLcPvd0N1lAQIegwf/Z3ndlch9N3Z+2P4O3A94f8h1PMsK0GrH
tusTDjFY3KfsJdn4Tvm22oAIeQQB3IQPb2n0Z3tTTFHPs+LjcNA62gcPHllJDwDT
MDruv9Dzo8FZrRq82xlFjIQ1tEPLciR7gNpzN7vBrcFzaLLKf4I3eQ8c/c+Bc4j8
DOuWb40B7Mrcvv4i10AzQqnXELxdKQcPICvvU6JGfHinzaeX18uifebwJFp/gAMA
O9mWns7YTzmsK87FI9Fu8MfIaIoKoDm8tgZWLjEzeBuy1jssfDgxpRvRBbMBidvG
SQZTi50RvZDeKdg2nkmczwnLsimm64Yj5yXCn1FiwaP+spgQMFPkpA==
=3TZp
-----END PGP SIGNATURE-----

More information about the Dundi mailing list