Re: X.BlaBla in PGP??? BWAHAHAHAHAHA!!!!

[Phillip Hallam-Baker]

> FYI, according to outlook express you a mail message was signed but after
> clicking the security icon I am told that "You have turned off revocation
> checking." with no way of turning it on.  As far as I'm concerned, the
> message is cryptographically sound but essentially useless because I don't
> know you or have any way of verifying that the certificate is still valid.

Revocation checking is important, and in point of fact something that
is not really supported in the PGP architecture unless one counts the self
signed key revocations.

If that was one of my VRSN .sigs then you could check revocation status
at VeriSign. I do agree that it would be better if there was full revocation
checking, this is meant to be a Win2K feature BUT I have not yet examined
the final product. Also I would have to get my cert re-issued with a CDP
installed.


        Phill