Lists Home |
Date Index |
> Many people feel otherwise. They feel that the centralization degrades
> security because it erects a single point to attack and introduces a
> third-party into transactions that would otherwise only involve two.
If A and B have already got a trust path, then sure it's only two. If
not, then someone has to act as the TTP (trusted third party) that
vouchsafe's A's identity to B and vice-versa. Fewer trust anchors is a
priori easier to manage than more trust anchors.
Zooko's quote was interesting, but I wasn't commenting on
> I guess it depends on what you mean by "trust". And that in turn depends
> on the problem domain.
As always. Security is a risk management issue.