On 01/03/2009 06:32 PM, Ben Bucksch:
Well, I think this might be a good idea, though. I could even go so far
as to demand that all operations of the CA, including all processes in
all detail, and the actual day-to-day operations, need to be open to
everybody, both over the Internet and in real life. Anybody can just
walk in the CA's office and watch anybody there working. All is entirely
open to anybody. Only the private keys of the CA and the rest rooms are
kept hidden.
Haha :-)
Actually exactly the opposite is true...NOBODY can walk into the CAs
offices without proper identification, permission and an obvious need to
do so.
But aren't auditors the eye of the public performing and recording those
operations? I mean, it's rather boring to watch some CA employee
starring at a screen and it wouldn't provide much insight either.
Neither is anybody allowed to view the details either (privacy), so...
I think that would improve operation quite a lot. The processes would
need to be water-proof and correct, just like a cryptographic algorithm
needs to withstand public scrutiny. (And most actually do have
weaknesses at first which are rooted out by the public review. This, as
experience shows, outweighs the advantage that attackers get by knowing
the algorithm. The algo just needs to be strong enough. I think you can
create strong CA processes, too.)
I certainly agree with the later.
(A regular and unannounced audit - of *all* parts of the processes, no
matter if RA or not - by a third party would also be mandatory.)
Yes, this could be interesting indeed.
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: start...@startcom.org
Blog: https://blog.startcom.org
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
