[SSL Observatory] [cryptography] After the dust settles -- what happens next? (v. Long)
Bayard G. Bell
buffer.g.overflow at gmail.com
Mon Sep 12 04:51:04 PDT 2011
On Sun, 2011-09-11 at 17:26 -0700, Paul Hoffman wrote:
> On Sep 11, 2011, at 4:50 PM, Ian G wrote:
>
> > So, what happens now? As we all observe, there are two approaches to dealing with the collapse of faith of the PKI system: incremental fixes, and complete rewrite.
>
> We don't "all" observe that. Some of us observe a third, more likely approach: nothing significant happens due to this event. The "collapse of faith" is only among the security folks whose faith was never there in the first place. A week after the event, who was talking about it other than folks on these lists and lists like them?
Although the reference here is to "security circles", I'd take this
article as evidence that the matter is carrying further:
http://www.nytimes.com/2011/09/12/technology/hacker-rattles-internet-security-circles.html?hpw
More information about the Observatory
mailing list