Anders Rundgren wrote:
When any of you guys have made a *public* write-up on how you
would address the [related] issues mentioned on p.2 in this document
http://webpki.org/papers/web/A.R.AppliedPKI-Lesson-1.pdf
you are ready for the real discussion.
That's easy since there's not need for end-2-end encryption in terms of
person-2-person encryption in a corporate ordering system. You can use a
central S/MIME PKC to encrypt messages sent to the ordering system which
decrypts the order and stores it for further processing. Nothing within
S/MIME or X.509 PKI prevents you from doing so.
I know that there is not a single person on this planet who can :-)
Yeah, yeah...
This special use-case does not show a valid point for your *general*
S/MIME and PKI bashing.
Ciao, Michael.
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
