[prev in list] [next in list] [prev in thread] [next in thread] 

List:       gnupg-commit-watchers
Subject:    [gnutls-commits]cvs: gnutls-www /wml openpgp.wml
From:       "Nikos Mavroyanopoulos" <nmav () gnutls ! org>
Date:       2002-05-31 21:41:04
[Download RAW message or body]

nmav		Fri May 31 23:41:04 2002 EDT

  Modified files:              
    /gnutls-www/wml	openpgp.wml 
  Log:
  
  
Index: gnutls-www/wml/openpgp.wml
diff -u gnutls-www/wml/openpgp.wml:1.7 gnutls-www/wml/openpgp.wml:1.8
--- gnutls-www/wml/openpgp.wml:1.7	Mon May 27 21:37:57 2002
+++ gnutls-www/wml/openpgp.wml	Fri May 31 23:41:03 2002
@@ -36,8 +36,8 @@
 <p>
 In the real world there are several Certificate Authorities, which certify people,
 and objects, often for money. Thus users have to decide which of the CAs to
-trust. One should note however that the most CAs somebody trusts then the
-security of the model, is equal to the security of the least secure CA.
+trust. One should note that the security of a model where someone
+trusts several CAs, is equal to the security of the least secure CA.
 <p>
 
 Unfortunately the trusted CAs decision is barely done by users, in practice.
@@ -59,15 +59,22 @@
 See the <a href="graphics/pgp1.png">figure2</a> which shows graphically the
 above case. The normal arrows indicate the sign operation, while the dot
 arrows indicate trust. Thus since Dave trusts Alice to be an introducer, and Alice 
-signed Bob's key, Dave also trusts Bob's key to be the real one. In 
-this example, although Charlie has signed Bob's key, he does not
-trust Bob to be an introducer. Charlie decided to trust only Kevin.
+signed Bob's key, Dave also trusts Bob's key to be the real one. 
+
 <p>
 There are some key points that are important in that model. In the example
 Alice has to sign Bob's key, only if she is sure that the key belongs
 to Bob. Otherwise she may also make Dave falsely believe that this
 is Bob's key. Dave has also the responsibility to know who to trust.
 This model is similar to real life relations.
+<p>
+Just see how Charlie behaves in the previous example. 
+Although he has signed Bob's key - because he knows, somehow, that it belongs to
+Bob -  he does not trust Bob to be an introducer. 
+Charlie decided to trust only Kevin, for some reason. A reason could be
+that Bob is lazy enough, and signs other people's keys without being sure
+that they belong to the actual owner.
+
 <p>
 Note that Certificate Authorities may exist in the OpenPGP model, although
 they are not required.



_______________________________________________
Gnutls-commits mailing list
Gnutls-commits@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnutls-commits
[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic