[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Lets Encrypt compared to self-signed certs

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Lets Encrypt compared to self-signed certs
From: bancfc@xxxxxxxxxxxxxxx
Date: Tue, 01 Mar 2016 00:03:05 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 29 Feb 2016 19:03:27 -0500
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=openmailbox.org; s=openmailbox; t=1456790595; bh=XfYZ+QpcL4gxQ/KwH4YsqPESKderXoMMU0urbqm2D4c=; h=Date:From:To:Subject:From; b=anpwFWLlrBCmAPtUUAhhrdnFDCBfU/TDERBac/z14CiBItOtqQ5FGxhu7sMU4gpw3 OeMsLprNlzdtRfpLDkwXJRKlzRfHC5w8kxiC7KNxOe61ZVhTCc2yBK9Rj7sX4R5QSy ezk1k8NyjS/ZnXSptAd2wTxLCyCNsPbWj90NfsRs=
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Roundcube Webmail/1.0.6

Hi David. Thanks for chiming in. Please add a feature for pinning at thekey level as IMO it provides the best protection.

Will the logs provide users/site owners with a way to independentlycheck if coercion has happened?

Would systems like Cothority help Lets Encrypt users notice certissuance inconsistencies even under compelled assistance? This projecthas the advantage of letting Tor clients spot anomalies in the Torconsensus documents should any of the DirAuths be compromised and it canbe used for CAs too:


https://github.com/dedis/cothority
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Lets Encrypt compared to self-signed certs
  - From: Seth David Schoen

Prev by Author: [tor-talk] Lets Encrypt compared to self-signed certs
Next by Author: [tor-talk] Computerworld article about Tor by Jeremy Kirk
Previous by thread: Re: [tor-talk] Lets Encrypt compared to self-signed certs
Next by thread: Re: [tor-talk] Lets Encrypt compared to self-signed certs
Index(es):
- Author
- Thread