summaryrefslogtreecommitdiff
path: root/website/vision.mdwn
blob: 281bc7281b0a78b3ae75af3f1214d19142e52447 (plain)

[[meta title="Our vision for the future of the monkeysphere"]]

External Validation Agent

This is probably at the crux of the Monkeysphere vision for the future:

TLS transition strategies

While RFC 5081 is quite a while off from widespread adoption, it would be good to have an interim translation step. This is analogous to the SSH work we've done, where the on-the-wire protocol remains the same, but the keys themselves are looked up in the OpenPGP WoT.

Firefox extensions that deal with certificate validation seem to be the easiest path toward demonstrating this technique. We should look at:

  • SSL Blacklist
  • Perspectives
  • there is another firefox extension that basically disables all TLS certificate checking. The download page says things like "this is a bad idea" and "do not install this extension", but i'm unable to find it at the moment.

Related discussions