Path: csiph.com!v102.xanadu-bbs.net!xanadu-bbs.net!feeder.erje.net!1.eu.feeder.erje.net!newsfeed.xs4all.nl!newsfeed4.news.xs4all.nl!xs4all!newsgate.cistron.nl!newsgate.news.xs4all.nl!post.news.xs4all.nl!not-for-mail Return-Path: X-Original-To: python-list@python.org Delivered-To: python-list@mail.python.org X-Spam-Status: OK 0.085 X-Spam-Evidence: '*H*': 0.83; '*S*': 0.00; 'subject:Python': 0.05; 'distributing': 0.07; 'governments': 0.09; 'pgp': 0.09; 'dislike': 0.16; 'entities.': 0.16; 'from:addr:torriem': 0.16; 'from:name:michael torrie': 0.16; 'idea:': 0.16; 'peer-to-peer': 0.16; 'sadly': 0.16; 'wrote:': 0.16; 'am,': 0.23; '(like': 0.23; 'header:In-Reply-To:1': 0.24; 'header:User-Agent:1': 0.26; 'respective': 0.27; 'subject:other': 0.29; 'maybe': 0.31; 'anyone': 0.32; 'anybody': 0.32; 'subject:all': 0.32; 'getting': 0.33; 'problem': 0.33; 'european': 0.33; 'message-id:@gmail.com': 0.35; 'to:addr:python-list': 0.35; 'next': 0.35; 'but': 0.36; 'should': 0.37; 'subject:: ': 0.37; 'received:org': 0.38; 'does': 0.39; 'enough': 0.39; 'to:addr:python.org': 0.39; 'received:192': 0.39; 'why': 0.40; 'easy': 0.60; 'free': 0.61; 'providing': 0.61; 'world': 0.64; 'charset:windows-1252': 0.65; 'offer': 0.65; 'delegate': 0.66; 'charge.': 0.72; 'obvious': 0.72; 'subject:have': 0.80; 'subject:you': 0.88; 'russia': 0.93; 'states,': 0.93; 'union.': 0.93 X-Virus-Scanned: amavisd-new at torriefamily.org Date: Sat, 23 May 2015 21:00:56 -0600 From: Michael Torrie User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.6.0 MIME-Version: 1.0 To: python-list@python.org Subject: Re: Ah Python, you have spoiled me for all other languages References: <555f440a$0$12990$c3e8da3$5496439d@news.astraweb.com> <555FA253.3020304@tundraware.com> <87382nmpkd.fsf@elektro.pacujo.net> In-Reply-To: <87382nmpkd.fsf@elektro.pacujo.net> Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 7bit X-BeenThere: python-list@python.org X-Mailman-Version: 2.1.20+ Precedence: list List-Id: General discussion list for the Python programming language List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Newsgroups: comp.lang.python Message-ID: Lines: 20 NNTP-Posting-Host: 2001:888:2000:d::a6 X-Trace: 1432436461 news.xs4all.nl 2838 [2001:888:2000:d::a6]:44573 X-Complaints-To: abuse@xs4all.nl Xref: csiph.com comp.lang.python:91157 On 05/23/2015 06:44 AM, Marko Rauhamaa wrote: > Johannes Bauer : > >> I dislike CAs as much as the next guy. But the problem of distributing >> trust is just not easy to solve, a TTP is a way out. Do you have an >> alternative that does not at the same time to providing a solution >> also opens up obvious attack surface? > > Here's an idea: an authentication is considered valid if it is vouched > for by the United States, China, Russia *and* the European Union. Those > governments are the only entities that would have the right to delegate > their respective certification powers to private entities. The > governments would also offer to certify anybody in the world free of > charge. Why trust governments? Why not use peer-to-peer trust. If I trust you and you trust site X with a fingerprint of Y, then I should trust it also. Sadly though getting the unwashed masses educated enough to make this work is impossible (like how PGP is pretty much dead). Maybe it's a harder problem than anyone can solve.