There are already some great technologies to avoid the central point of failure we're seeing with trusted ssl certs. One I found out about recently is called Monkey Sphere and it replaces ssl certs with openpgp keys.
So you can choose to trust all of today's default certification issuers, and therefore the sites they sign, or you could remove some of those issuers from your keyring and manually verify any of their signed sites that you do business with.
It would also allow sites to get certifications from any number of organizations and people on the same key rather than using ssl certs where the specification mandates a single certifying authority per certificate.
It's very interesting stuff and they have some tools ready for you to deploy.
/div>
Techdirt has not posted any stories submitted by latchkeyed.
Central Point of Failure
There are already some great technologies to avoid the central point of failure we're seeing with trusted ssl certs. One I found out about recently is called Monkey Sphere and it replaces ssl certs with openpgp keys.
So you can choose to trust all of today's default certification issuers, and therefore the sites they sign, or you could remove some of those issuers from your keyring and manually verify any of their signed sites that you do business with.
It would also allow sites to get certifications from any number of organizations and people on the same key rather than using ssl certs where the specification mandates a single certifying authority per certificate.
It's very interesting stuff and they have some tools ready for you to deploy.
/div>Techdirt has not posted any stories submitted by latchkeyed.
Submit a story now.