[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Ayatana] Secure Identity Design
- To: ayatana@xxxxxxxxxxxxxxxxxxx
- Subject: Re: [Ayatana] Secure Identity Design
- From: Martin Owens <doctormo@xxxxxxxxx>
- Date: Mon, 21 Jun 2010 16:49:22 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:subject:from:to:in-reply-to :references:content-type:date:message-id:mime-version:x-mailer :content-transfer-encoding; bh=MEHhZiCnR6Bul2VBF0WV7s1nYAkcobPyBwrBnePwFps=; b=LzqOQzaSGCe22JtI4NUoGEEDvMSP2kUV8rKM9sJiWuuTM9o+xkSysx+fm8lYl8xqf4 wE2CB9hj/X/WbjP/DnCQVa/ffTfalU1HARK1U/vlUMpkff7EbDzY8l7JEddQ5MaxS1GI r7Ww/5PlaWexirqAClmDoHOApYSCwyV4OitQ4=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=subject:from:to:in-reply-to:references:content-type:date:message-id :mime-version:x-mailer:content-transfer-encoding; b=n4NNzUqG05FL2kjMK/Br9PxbWXrNxGFxStBpt4/UFCydgWoLIctUuqvhJnZKgB1W7k 2MUIU0QHFWYkDdKN6PkZ/VDD7JlE6kJR0hZCrKDPEyH6vp1y+cfS/i3yugkt8v/TUoMh gcLR6L5fnHVfMAiJyAAvbOd+7PeYgTQrKXiOE=
- In-reply-to: <1277148547.1583.32.camel@charly>
- List-archive: <http://lists.launchpad.net/ayatana>
- List-help: <https://help.launchpad.net/ListHelp>
- List-id: <ayatana.lists.launchpad.net>
- List-owner: <https://launchpad.net/~ayatana>
- List-post: <mailto:ayatana@lists.launchpad.net>
- List-subscribe: <https://launchpad.net/~ayatana>
- List-unsubscribe: <https://launchpad.net/~ayatana>
- References: <1277146547.2956.46.camel@delen> <1277148547.1583.32.camel@charly>
On Mon, 2010-06-21 at 16:14 -0400, Scott Kitterman wrote:
> This needs to be handled very carefully. GPG web of trust is about trusting identity to be accurate. It's got nothing to do with social media concepts like Facebook friends.
> Scott K
It's both, the most important part is the secure web of trust which
verifies the identity of the person via their links with others. This
should be held sacred. As an aside there is nothing wrong with having
social trust as a by-product, it just can't be confused with or held to
the same standards as the core purpose of identity trust.
It's a feature which can be easily jettisoned in first versions,
although it's something that would be very useful later on.
On Mon, 2010-06-21 at 21:29 +0200, Thorsten Wilms wrote:
> Shouldn't the network-building happen face-to-face, to really know who
> you are dealing with?
Yes and it depends, the face-to-face is important but not absolute. It's
useful for verifying a person's identity with governmental ID, but the
real decider is the out of band communication confirmation, which means
you should be able to add someone like your mum using a phone call. If
we require face-to-face then we risk making the process ridiculous, but
we may still be able to promote it.
> * Verified Contacts
We'll go with that unless anyone has any objections, it does sound
clinical but I think it's the best we have.
Martin,