|
|
|
|
|
|
by kjetilk
2721 days ago
|
|
|
Oh, but that's more a matter of where you start and what you bootstrap. In both cases, DNS and TLS CA-based stuff is about trust. You need to trust the DNS server, as there could be malicious servers sneaking in, and you need to trust the cert. But once you have a social network with a large strong set, you could base the trust on the strong set, and in particular, individuals in that strong set who can demonstrate that they have a clue. Once we have that, we can get rid of these achilles heels, but quite frankly, I don't believe in a strategy that takes on those problems first. Sure, I obviously got OpenNIC in my DNS resolution. Haven't once seen an address that required me to use it beyond when I set it up. I think our approach is much better. Base it on people and the strongest part of their network. |
|
|