Opened 6 years ago

Closed 6 years ago

#117 closed defect (fixed)

log description as "untrusted"

Reported by: kent@… Owned by: draft-ietf-trans-rfc6962-bis@…
Priority: minor Milestone: review
Component: rfc6962-bis Version:
Severity: - Keywords:


The introduction stills refers to logs as “untrusted” yet this is a potentially confusing term for readers. Logs are nominally trusted, but subject to independent Monitoring and Auditing. Remember the Regan-era slogan "trust but verify" :-)

Change History (5)

comment:1 Changed 6 years ago by linus@…

FWIW, I really like the term "untrusted".

Remember the “I don’t trust used car salesmen as far as I could throw them.” idea -- the whole point is to not _have_ _to_ trust the logs, aight?

comment:2 Changed 6 years ago by rob.stradling@…

Steve, Linus,

Would this rework of the first two sentences work for both of you?

"Certificate transparency aims to mitigate the problem of misissued certificates
by providing append-only logs of all issued certificates. The logs do not need
to be trusted because they are publicly auditable. Anyone may verify the
correctness of each log and monitor when new certificates are added to it."

comment:3 Changed 6 years ago by linus@…

Works for me. Thanks.

comment:5 Changed 6 years ago by melinda.shore@…

  • Resolution set to fixed
  • Status changed from new to closed
Note: See TracTickets for help on using tickets.