On 27/12/08 00:15, Kyle Hamilton wrote:
On Fri, Dec 26, 2008 at 3:12 PM, Ian G<i...@iang.org> wrote:
(Although I think, it is a singular observation: there is no effective
dispute resolution for this case or any other. What does that say?)
That there is no reason to trust a system without dispute resolution procedures.
I would be somewhat sympathetic to this .... but it is kind of damning
to the entire system.
Question is, is there a way of creating a dispute resolution system that
would deal with the entire problem space?
Let's say you and I are in dispute, and the damages are N bucks. We
need someone to tell us who did what, and who does what, and who pays what.
We could envisage a forum of dispute resolution where we both agree to
enter because we are "inside this space" already. And agree to those
liabilities. That might work between us, but it doesn't scale.
E.g., it can't apply easily to a Firefox end-user who hasn't agreed to
this forum. So, if a Firefox user was ripped off because of a cert,
then she would be shut out. Alternatively, if she libelled a CA by
claiming insecurities in a public blog, the CA would not be able to get
satisfaction because she wouldn't recognise the forum.
However, maybe a partial solution is better than none? Anything might
be better than what we've got now...
iang
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
