Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Re: Non-Mathmatical Forging of PKI Digital Certificates / Throwing Rocks at the PKI
From: Pluto <pluto () DEFCOM-SEC COM>
Date: Tue, 29 Aug 2000 19:16:10 +0200
On Sat, 26 Aug 2000, Lincoln Yeoh wrote:


I disagree that some form of escrow is a bad idea in a corporate environment.

For example the key itself or a master key could be split (Blakely Shamir
style) and then encrypted and escrowed with multiple entities - e.g. board
members, company safe.


  Why have a duplicate in the vault if you are using treshold keys?


Whether corporations should exist as entities on their own is a different
matter :).


  "All revolutions are local" won my personal award of funniest shirt on
defcon :)

  Gruss

--
  Pluto   -   SysAdmin of Hades
  Free information! Freedom through knowledge. Wisdom for all!! =:-)
  PGP 1024/7261AACD 1996/09/10 1F3F EA94 D056 A686  4D19 C456 6CF9 4344
  Phone: +49-173-4814739  eCash(DB): 129429938818  Q3T: js-Pluto

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]