|
Convergence is a strategy for replacing SSL Certificate Authorities which claims to be agile, secure, and distributed. Moxie Marlinspike released it in August 2011 while giving a talk titled "SSL and the Future of Authenticity" on stage at the Black Hat security conference. It is currently a Firefox addon and a server-side notary daemon. In the talk, Moxie Marlinspike proposes that all of the current problems with the CA system can be reduced to a single missing property, called "Trust Agility", which Convergence is designed to provide. As of 2013,〔(【引用サイトリンク】date=2013-02-13 )〕 Marlinspike is focused on TACK, which is designed to be an uncontroversial first step, reducing the number of times a third party needs to be trusted. Development of Convergence is continuing in a "Convergence Extra" fork. ==Background== Convergence is based on previous work from the Perspectives Project at Carnegie Mellon University. Like Perspectives, Convergence authenticates connections by contacting external notaries, but unlike Perspectives, Convergence notaries can use a number of different strategies beyond network perspective in order to reach a verdict. 抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)』 ■ウィキペディアで「Convergence (SSL)」の詳細全文を読む スポンサード リンク
|