Wednesday, November 8, 2017

Alternatives to the PKI in SSL

Google's "Blogger" application, very surprisingly, does not yet support SSL for custom domains. (And yet Google is an advocate for SSL everywhere. Hmm...) I could of course point my domain's CNAME record at a CDN instead of Blogger, use that CDN for SSL, and register Blogger's SSL cert for the CDN/Blogger connection (since Blogger does support SSL when you do not use a custom domain.) Should I bother? Of course, I've always hated generic CDN-owned certs as their authentication value is questionable, and even more than that I've disliked SSL's PKI model whereby massive CA lists are thrust upon users via their operating systems and/or browsers, and mostly unknowingly.

Perhaps I could sign the text of each post with GPG. Most visitors won't care, and those who do could authenticate posts without having to trust such a giant list of CAs that they have probably never vetted. But what happens when the asymmetry assumed by GPG is lost, perhaps due to quantum computers?

Perhaps I'll experiment with my own DCKR proposal. I could publish a script for hash-based signing of blog contents on this same blog, and then I could publish a DCKR signature stream at a regular interval. Perhaps I should practice what I preach.

1 comment:

  1. The payout odds for each kind of guess is based on its likelihood. The sport of Roulette is a popular, entry-level sport that's best for novice gamblers outcome of|as a result of} it requires completely no talent. The Roulette is a spinning wheel that incorporates slots numbered 1 to 카지노사이트 36, as well as|in addition to} two additional slots, 0 and 00. A white ball is spun around the wheel because the wheel rotates, and when the ball loses pace, it drops, falling into one of the numbered slots. And now it is obtainable on your laptop, cellphone, and tablet at no cost from 24/7 Games! This HTML5 roulette sport is playable from the browser of all your units - no app or flash download required!

    ReplyDelete

Blockchain animation

Blockchain technology offers society a new capability: sharing business records whose tamper resistance can be trusted more, and for a lo...