multiple subkeys and key transition

Robert J. Hansen rjh at
Sun Dec 12 05:25:39 CET 2010

On 12/11/2010 10:28 PM, MFPA wrote:
>> You authenticate Amazon by
>> checking their SSL cert and seeing that it was issued
>> by a trusted authority.
> Or do I just notice the padlock icon and the yellow addressbar
> indicating an encrypted connection?

The two are generally synonymous.  Whether a user *should* trust the
same CAs as their browser vendor is a very good question -- however, the
fact is the overwhelming majority of users *do*.  If the browser says "a
trusted CA certifies this site is for real," the user is going to
believe it.

> To me, the page where payment details are entered does not look much
> like an example of "no user requirement to authenticate the identity
> of the server, but rather a simple requirement to prevent snooping."

Can't please everybody.  If it was an involved process the vast majority
of users wouldn't bother.  Instead, it's just a "check for a padlock and
a yellow address bar."

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5598 bytes
Desc: S/MIME Cryptographic Signature
URL: </pipermail/attachments/20101211/314e7742/attachment.bin>

More information about the Gnupg-users mailing list