httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Brian Candler <B.Cand...@pobox.com>
Subject Re: pgp trust for https?
Date Tue, 08 Nov 2005 12:04:49 GMT
On Sun, Nov 06, 2005 at 05:31:13PM -0500, Peter Djalaliev wrote:
>    However, I really think that PGP and the web-of-trust has
>    applicability and usefulness for web sites.  For a smaller web site,
>    obtaining a certificate of sufficient level is quite hard and
>    expensive.  These websites usually end up running their own CA-s.  If
>    we can replace all these "rogue" certificate authorities by using PGP
>    and the web-of-trust, maybe we can achieve a better security model.
>    What do you think?

Have you seen www.cacert.org ?

Free certificates derived from a distributed web of trust. Of course,
browsers need to have the cacert.org root certificate installed.

Regards,

Brian.

Mime
View raw message