<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:'times new roman', 'new york', times, serif;font-size:12pt"><div></div><div>Hi,</div><div><br></div><div>As requested let me ask my question again and in a different format.</div><div><br></div><div>If I sold you a condom which had a warning from Ministry of Health that said "We do not recognise the manufacturer of this product nor guarantee it effectiveness" what is the likelihood that you will use the product?</div><div><br></div><div>I connected to the KENIC site and Chrome raised an issue on the authenticity of the security signature that the site was presenting. Who do I trust, the local techies telling me that this is quite safe or Google?</div><div><br></div><div>To Wanjiku her 1st reaction is to avoid the site, and what stops a sysop somewhere in the developed world to which we have laid our fibre optic cable from listing all
.ke domains as unsafe? </div><div><br></div><div>Lets try and appreciate the global view of issues and also that 99.9% of web users have no appreciation or understanding of the underlying structure of a self or a publicly signed certificate. When a job applicant places his credentials on the table I definitely will take a certificate he presents from wanawatu institute with a kilo of salt as opposed to one issued by KNEC, ICDL (intentionally included) or CISCO.</div><div><br></div><div>So Michuki if you seriously belief that there is no implication to this self signed certificate at KENIC then tell us so.</div><div><br></div><div>Regards<br> </div>Robert Yawe<br>KAY System Technologies Ltd<br>Phoenix House, 6th Floor<br>P O Box 55806 Nairobi, 00200<br>Kenya<br><br><div>Tel: +254722511225, +254202010696<div><br></div><div style="font-family:times new roman, new york, times, serif;font-size:12pt"><br><div style="font-family:arial,
helvetica, sans-serif;font-size:13px"><font size="2" face="Tahoma"><hr size="1"><b><span style="font-weight: bold;">From:</span></b> Michuki Mwangi <michuki@swiftkenya.com><br><b><span style="font-weight: bold;">To:</span></b> robert yawe <robertyawe@yahoo.co.uk><br><b><span style="font-weight: bold;">Cc:</span></b> KICTAnet ICT Policy Discussions <kictanet@lists.kictanet.or.ke><br><b><span style="font-weight: bold;">Sent:</span></b> Sat, 3 April, 2010 12:58:43<br><b><span style="font-weight: bold;">Subject:</span></b> Re: [kictanet] KENIC is wanting<br></font><br>-----BEGIN PGP SIGNED MESSAGE-----<br>Hash: SHA1<br><br>Hi Robert,<br><br>robert yawe wrote:<br>> Hi,<br>> <br>> A self signed certificate that my browser treats as a masquerading site<br>> that is unsafe, lets stop deceiving ourself that we are an island in the<br>> vast internet we have to comply with big brother.<br>> <br><br>I have signed this email
message. Am sure you will get an error trying<br>to validate my signature. Thats because i dont have any online secure<br>trust relationship with you. If we did you would have a validated<br>signature on your pgp key management database. You would also have known<br>where you got my key from and can vouch for its credibility.<br><br>So please ask your question again....<br><br><br><br>> Have you ever tried to understand why you locally issued debit card has<br>> a VISA sign on it?<br>> <br><br>is VISA security?<br><br><br>I still dont understand your relationship between SSL self signed<br>certificate and DNS security?. Are you referring to DNSSEC? - if so<br>please clarify.<br><br>Regards,<br><br>Michuki.<br>-----BEGIN PGP SIGNATURE-----<br>Version: GnuPG v1.4.9 (Darwin)<br>Comment: Using GnuPG with Mozilla - <a href="http://enigmail.mozdev.org/"
target="_blank">http://enigmail.mozdev.org/</a><br><br>iEYEARECAAYFAku3EVMACgkQrFzEcG7FWGm9hACePII0ePOy0NwAjhoaaEMVF0fc<br>OZEAnA7d2vju6DZ/EtrWE/BolPqCZmd9<br>=YRzN<br>-----END PGP SIGNATURE-----<br></div></div></div><div style="position:fixed"></div>
</div><br>
</body></html>