Ask HN: Peer to Peer trust?

5 points by acd ↗ HN
Are there any current standards for peer to peer trust, so if a majority of your known friends trust a service you could too?

I have a problem with the security model of the current CA solutions. Evil governments could start an CA and issue fake MITM man in the middle certificates, or they could simply hack into an CA. Would it not be wiser to trust a majority of your friends and family rather than to trust an unknown certificate authority?

Why do you have to involve self signed certificates or CA certificates if you want to encrypt a service for a known friend?

4 comments

[ 2.6 ms ] story [ 23.0 ms ] thread