Michael Ströder wrote:
>> That there should be as you claim mainly a "UI problem" is an opinion
>> that has some support in the literature ("Jonny can't encrypt"),
>> but I feel that it is much deeper than that; security should probably
>> as in the case of Skype be transparent, not needing any UI at all.
>> I start Skype and that's about it.>In the absence of further technical details about Skype I believe it's >probably symmetric encryption based on shared secrets derived from user >passwords similar to Kerberos That is probably correct. >The main disadvantage and difference to >S/MIME with X.509-PKI is that you need online network access to a >central infrastructure to make use of it. That's ok for a phone >application or instant messenger but not necessarily for e-mail. (I >already pointed this out but you ignored it.) This is something which I consider debatable. Nothing prevents you from creating data off-line and then when it is time to send it away, you invoke the central infrastructure. That such a scheme has severe limitations with respect to routing is true but if IM actually works, why wouldn't email? I.e. the IT-landscape has changed, while S/MIME has not. Streaming of media indicates that the bandwidth considerations once considered as crucial are not that valid anymore. Voila! Here there is work to do. Happy weekend Anders _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
