Categories
- 17.3K All Categories
- 9.5K Mining
- 574 Pool Discussion
- 378 Promotional
- 1.4K General Project Discussion (non-technical)
- 485 Education
- 811 Protocol and Client discussion
- 170 web3-js
- 29 Whisper
- 16 Swarm
- 3 RLP
- 303 IoT & Hardware
- 1.2K Smart Contracts and Dapps
- 28 Serpent
- 359 Solidity
- 664 Projects
- 1.2K Reference clients code and builds
- 249 Eth & AlethZero- Cpp Implementation
- 471 Geth - Go Implementation
- 242 Mist
- 15 Node.js Implementation
- 36 Python Implementation
- 49 Mix
- 36 Other Implementations
- 170 Meetups
- 40 Other Events
- 226 Jobs & Skills
- 281 Press and Articles
- 75 Audio/Video
- 296 Ether Sale
- 1.2K Other Languages
- 96 Chinese
- 255 German
- 33 Italian
- 111 French
- 3 Hebrew
- 42 Japanese
- 75 Portugese
- 46 Romanian
- 185 Russian
- 231 Spanish
- 47 Turkish
- 125 Watercooler
Certificate Authorities
jpritikin
Member Posts: 29 ✭
An article I read implied that it should be possible to use
Ethereum to replace Certificate Authorities, like who certify the ssl
certificates.
How would you do this?
I don't have any great love for the CAs, I'd love to see a better way.
However, even the current CA stuff does not work well.
prove this initially? How or what would you need to have in place so
that you could eliminate the CAs and just use Ethereum? It seems that
somewhere along the line, someone or something has to somehow verify
you are really who you say you are and that you own what you say you
own (i.e. certifiy it) and then, this could be published via ethereum.
But it's down to who you trust... You can't trust the CAs because
there are so many of them and you can't possibly know them all. How is
this supposed to work???
Ethereum to replace Certificate Authorities, like who certify the ssl
certificates.
How would you do this?
I don't have any great love for the CAs, I'd love to see a better way.
However, even the current CA stuff does not work well.
- there are many different levels that CAs try to sell/upsell you
which are worthless. A more expensive certificate does not buy you
anything. - there are so many different CAs that you, as a web surfer, do not
know if a site is more real than another, and probably never even
looked at a certificate chain.
prove this initially? How or what would you need to have in place so
that you could eliminate the CAs and just use Ethereum? It seems that
somewhere along the line, someone or something has to somehow verify
you are really who you say you are and that you own what you say you
own (i.e. certifiy it) and then, this could be published via ethereum.
But it's down to who you trust... You can't trust the CAs because
there are so many of them and you can't possibly know them all. How is
this supposed to work???
Comments
The other possibilities are reputation systems to show that you are a reputable person with reputable friends to say that you are who you say you are, though IMHO that may be more like a tradition Web of Trust.
Here is the draft of their autonomous CA protocol, which validates your domain ownership autonomously:
https://letsencrypt.github.io/acme-spec/
Find the implementation on github.
Well it is still centralized, but I guess porting and evolving it to ethereum, etc. is just a question of time.