From: bryce@digicash.com
To: Black Unicorn <unicorn@schloss.li>
Message Hash: 16bbd2fcfce0b277b16d6d46f8658d7d4e7d0b59d4c4a68ae1107a4c201b7bca
Message ID: <199604290904.LAA03436@digicash.com>
Reply To: <Pine.SUN.3.93.960428215100.25014G-100000@polaris.mindport.net>
UTC Datetime: 1996-04-29 18:42:37 UTC
Raw Date: Tue, 30 Apr 1996 02:42:37 +0800
From: bryce@digicash.com
Date: Tue, 30 Apr 1996 02:42:37 +0800
To: Black Unicorn <unicorn@schloss.li>
Subject: Re: My nym: Statement
In-Reply-To: <Pine.SUN.3.93.960428215100.25014G-100000@polaris.mindport.net>
Message-ID: <199604290904.LAA03436@digicash.com>
MIME-Version: 1.0
Content-Type: text/plain
-----BEGIN PGP SIGNED MESSAGE-----
An entity calling itself Black Unicorn <unicorn@schloss.li> probably
wrote:
> +++++ BEGIN PGP SIGNED MESSAGE (VERIFIED) (bap v1.1b2) +++++
>
> I thought I would take a moment to discuss my nym, given the Web of Trust
> issues floating about right now.
<snip>
> The man in the middle problem with my nym is not really an issue as far as
> I can tell. I suppose someone might argue that they wouldn't want to mail
> me anything asking for legal advice for fear it might be intercepted and
> returned to them with disinformation attached. As these are people I
> generally don't know, it's equally likely to them that I am simply an
> agent provocateur who has no man in the middle problems.
I find that less likely, personally. In any case it should
be understood that they are separate threats, which should
be considered separately. Solving one will not solve the
other, but by leaving _both_ unsolved you increase your
risk.
> From my end, man in the middle attacks are difficult to use against me
> because those with whom I have extensive business and personal
> communications know me well enough to permit end to end verification
> through seperate secure channels. (I use secure telephones regularly, and
> this permits voice recognition).
I apologize for mistakenly thinking that you had no
signatures. Furthermore, I take back what I said about you
not being sufficiently conscious of man in the middle
attacks.
So now we have connections to the Web O Trust, and some
degree of confidence that you are alert to the possibility
of MITM attacks. All I need to do is assure myself that
each person between you and I on the Web O Trust is
similarly engaging in counter-MITM measures...
Regards,
Bryce
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2i
Comment: Auto-signed under Unix with 'BAP' Easy-PGP v1.1b2
iQB1AwUBMYSGMkjbHy8sKZitAQHHRgMAuq9/J3OacbGAUICrb2SaMfKrqY6AGnmP
2yOLDoNcokSfz+EUtcLEAHWUcXAXSqsK6CWFeMSniLb/uTYKNXzovh6lZ92AvkJu
ynazcyAOtZYjDvlTkaFzdN2o1Ca3W2DI
=A5Gy
-----END PGP SIGNATURE-----
Return to April 1996
Return to “bryce@digicash.com”