[Pkg-mozext-maintainers] replacing Perspectives extension with Convergence?
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Mon Sep 12 17:18:10 UTC 2011
On 09/12/2011 01:04 PM, Vagrant Cascadian wrote:
> you can design notaries that use whatever verification model you want.
yep, this is why i said "given the default notary model" :)
> a concern with convergence is that it caches the certificate with no sort of
> expiry (essentially a "Trust On First Use" + notary verification model), but i
> suspect that's fixable.
have you asked moxie what he thinks about exipry?
His talk suggested that one of his concerns was leaking a user's
browsing history to the notaries, and i suspect that expiry is a bit of
a pushback against that; however, given the various tradeoffs, it might
be reasonable to allow a user some control over whether they prefer to
leak some level of browsing patterns to the notaries or whether they
prefer to risk using a public key after it has been compromised and
removed from use.
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1030 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-mozext-maintainers/attachments/20110912/6395e342/attachment.pgp>
More information about the Pkg-mozext-maintainers
mailing list