MozillaZine

PSM 2.0 expected by May

Thursday January 25th, 2001

Bob Lord explains in n.p.m.crypto:
"We've just posted the first draft of several PSM 2.0 (codename PIP) documents. In addition to the Roadmap which we posted a few days ago, you'll now find the first cut at the workplan (a version of what we internally call the 'PRD'), a tasklist, and a link to the UI mockups.

Start here: http://www.mozilla.org/projects/security/pki/psm/

These documents will evolve over the next few weeks as we learn more and as Mozilla developers identify the areas where they'd like to help (platform support, for example).

We're trying to release PIP by the end of May. We'll soon post more information about building PIP, as well as the target date for switching the nightly builds over."


#8 Re: KEY ESCROW??

by rblord <lord@netscape.com>

Sunday January 28th, 2001 1:30 PM

You are replying to this message

Some Certificate Authority (CA) products (such as the iPlanet Certificate Management System) have a key recovery feature. The CA administrator can configure the CA to escrow a user's encryption key during the enrollment process. When this happens, the user gets a warning dialog and has the option to continue or to cancel.

There is never a time when the CA gets your encryption key without your consent. We'd never let that happen.

I'd point to the exact text, but haven't completed those UI mockups yet. :-)

-Bob Lord