Firewall Wizards mailing list archives

PKI is the pits?

From: Christopher Hicks <chicks () chicks net>
Date: Tue, 12 Oct 2004 21:37:48 -0400 (EDT)

I got this in my Linux Today newsletter for today:

        EBCVG: TEN THINGS I WISH THEY WARNED ME ABOUT PKI

        "In this paper we look at a number of pratical organizational
        issues that pure PKI suppliers often fail to mention..."

        COMPLETE STORY:
        http://nl.internet.com/ct.html?rtr=on&s=1,166k,1,48kz,m734,bfaz,g6x1

My read of the actual article (which you can find directly athttp://www.ebcvg.com/articles.php?id=271 if you want to avoid gettingclicktracked) ... the actual article is much more scathing than this shortsummary would indicate. I don't think many folks would even try toimplement PKI after reading this. So, as a rather lazy Linux admin I'mcompelled to ask: do others who have swallowed the PKI pill lived to tellthe story? Is it really this bad? What can be done better? Is anybodytrying to do it better?


--
</chris>

Westheimer's Discovery:
  "A coupla months in the laboratory can save a coupla hours in the library."
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

PKI is the pits? Christopher Hicks (Oct 14)
- Re: PKI is the pits? Bennett Todd (Oct 14)
- RE: PKI is the pits? Eugene Kuznetsov (Oct 17)
  - RE: PKI is the pits? Marcus J. Ranum (Oct 17)
    - PIX Books Shimon Silberschlag (Oct 22)
    - Re: PIX Books Josh Welch (Oct 22)
    - Re: PIX Books greg padden (Oct 22)
    - Re: PIX Books Matthew Powell (Oct 25)
    - RE: PIX Books sci-admin (Oct 30)
    - RE: PKI is the pits? Eugene Kuznetsov (Oct 22)