Ian G wrote:
PGP and Skype both offer authenticated + confidential messages, without the "certificate" side of things. They do it conceptually by tightly binding the keys to the user, and having each user authenticate their handles directly to each other.
Well, there has to be a persistent secret in the game - likely the user's password which is being used as shared secret. Kerberos works that way. The caveat is that it needs network on-line access to a central infrastructure. X.509 PKI does not require this.
Ciao, Michael. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
