[liberationtech] FW: The security and ethics
Jacob Appelbaum
jacob at appelbaum.net
Wed Feb 9 16:36:34 PST 2011
On 02/09/2011 11:24 AM, Graham Webster wrote:
> Apologies for the fast follow-up. I did not mean to say there were _no_
> certification mechanisms (obviously RSA does certification, as I assume do
> other entities), but rather that the knowledge about whom to trust is not
> widely distributed, as it is with lawyers or doctors. Perhaps a key
> difference is that huge numbers of people _know_ how lawyers and doctors are
> held accountable, whereas knowing what qualification would be appropriate
> for an individual or organization's needs is not a common thing. -gw
>
What good is certification of people? Are my criticisms of Skype more or
less valid when I have a CISSP or some piece of paper from RSA?
Certification of software such as FIPS ratings are *interesting* but
there are lots of problems involved.
All the best,
Jacob
More information about the liberationtech
mailing list