Remediation


How can we mitigate the problem of decentralized trust, and its burden on ordinary users?

Hybridize security applications, bootstrapping public-key systems with symmetric-key protocols like Kerberos (e.g. CITI's PK-no-I, or ephemeral "junk" keys)

Make certificate revocation and verification extremely efficient and cheap (e.g. Bell Labs' EFECT)

Work out the namespace issues (e.g. link local namespaces with SDSI / SPKI, or build a global certification hierarchy on top of secure DNS)