Hello, I'm a student at Liege univessity (Belgium).For my "end of studies last job", I'm working on the comparaison of the SSL 3.0 protocole and the PCT 2.0...
Kabamba Kabambi Alain
kabamba@...
Apr 1, 1997 10:54 am
4748
Now that we seem to have established that SSL provides digital signatures only for authentication, it seems to me that SSL did not set out to provide...
Geoffrey
geoffrey@...
Apr 1, 1997 12:36 pm
4749
Hi I am using netscape 3 browser as client and made some sample server which checks for client certificate and if it is there it gives xxxx.html otherwise...
Minnam Srikanth NTC/M...
Minnam@...
Apr 1, 1997 1:25 pm
4750
Where can I find SSL API ? Free ? Tang Shaohua...
Tang Shaohua
shtang@...
Apr 1, 1997 2:09 pm
4751
Hi all, I am beginer in the topic "Secure Protocols" and "secure servers", excuseme if my questions are very simples :( ...later, I hope interchange better...
Luis Alberto Caceres
hakimus@...
Apr 1, 1997 2:21 pm
4752
Hi I have happened to loose the message which tells how and what address to send the remove command to in a system crash. If someone could forward that message...
Nate Iverson
niverson@...
Apr 1, 1997 2:41 pm
4753
Hi! ... You'd better use HTTPS protocol under any Web-server, which support it. Such as Apache with Apache-SSL module. You should have SSLeay 0.6.6 ...
Igor V Liapunoff
igric@...
Apr 1, 1997 2:56 pm
4754
Carey J Sheahan/SED/CSC 04/01/97 09:42 AM Please remove csheahan@... from talk group....
csheahan@...
Apr 1, 1997 3:08 pm
4755
Hiya Yes, but if Alice knows she blew it, he onus is on her to confirm receipt of corrected information. So she will need to get Bob to sign something...
Mark Shuttleworth
marks@...
Apr 1, 1997 3:44 pm
4756
(The first version of this message was apparently lost. Sorry if you see it twice.) From: Adam Shostack <adam@...> ... This is unfair. Peter's...
David P. Kemp
dpkemp@...
Apr 1, 1997 4:05 pm
4757
You would expect me to disagree with this. If I take the appropriate care (which one would do if threatened sufficient to want to have non-repudiable status,...
Peter williams
petkat@...
Apr 1, 1997 7:58 pm
4758
Hi, there. What I can accomplish is to build my small agent which can set a SSL connection to a Web Server via a proxy. As far as I understand, netscape proxy...
Xu, Xiangdong
xiangdong.xu@...
Apr 1, 1997 8:05 pm
4759
Well thankyou David! Ive often used the analogy that the technique was "Kerberos Revisited", with asymmetric keys. Remember, follow-on handshakes do not...
Peter williams
petkat@...
Apr 1, 1997 8:08 pm
4760
... No kidding. On this subject (secure time) anyone running a "real" PKI needs access to some sort of signed PKCS#7 time object. We already have this support...
Patrick Richard
patr@...
Apr 1, 1997 8:21 pm
4761
... Well, Do people need to be aware of it, yes. However it is relatively simple to get multiple time sources to make this a relatively difficult DOS attack,...
Bob Beck
beck@...
Apr 1, 1997 8:45 pm
4762
... The point is not how effective or how great the attack can be, or if it classifies as a "real" DOS attack (however you wish to define it), but that secure...
Patrick Richard
patr@...
Apr 1, 1997 9:33 pm
4763
We have several production servers as well as several development servers all running FastTrack. We also have SSL on 2 of the machines. We would like to move...
Greg Rasmussen
greg@...
Apr 1, 1997 9:59 pm
4764
remove...
Ben Tammetta
ben@...
Apr 1, 1997 11:06 pm
4765
Thanks for the comments... I have given this some thought and I believe I now agree with some who responded to my original question that the life of a...
Dan Hurley
dfh@...
Apr 1, 1997 11:58 pm
4766
... Actually, if you have Bob timestamp the message before Alice signs it, I think you can get true NR. Bob acts as the time stamp agency, but Alice gets to...
Tom Weinstein
tomw@...
Apr 2, 1997 12:43 am
4767
... Any scheme that relies on connection-NR must make absolutely sure that the user knows what is being asserted by making the connection. The easiest way to...
Tom Weinstein
tomw@...
Apr 2, 1997 12:55 am
4768
remove...
Ettore Pelucchi Tel ...
pelucchi@...
Apr 2, 1997 8:28 am
4769
A few comments on other peoples' points: ... My point is that SSL can offer very strong evidence of the act of binding only: it can provide only weak evidence...
Geoffrey
geoffrey@...
Apr 2, 1997 10:56 am
4770
Cryptology is a field where many disciplines meet. In particular, what may be very well defined from the computer specialist viewpoint, may be lacking...
Lasertech Tecnologia ...
lasertec@...
Apr 2, 1997 11:48 am
4771
... from an intranet perspective,... Even without this consideration, I believe servers should not be able to authenticate any client's certificate signed by...
Yungkao.Hsu@...
Apr 2, 1997 3:20 pm
4772
... You can certainly move keys between machines, but bear in mind that the more people have access to your keys the greater the chance of something going...
Mark Shuttleworth
marks@...
Apr 2, 1997 3:20 pm
4773
Your mail has been forwarded to Bryce Curtis/Austin/IBM @ IBMUS. Please make a note of this new address for future correspondence. If sending from VM, direct...
bcurtis@...
Apr 2, 1997 3:44 pm
4774
Yungkao, ... Good point here. However I think a better solution is to provide for a warning that the cert being issued has an expired date and allow the...
Jeff Williams
jwkckid1@...
Apr 2, 1997 3:53 pm
4775
I heard that the Kerberos protocle is vulnerable to a dictionary attack and replay attack.. Could you explain why? Thanks,...
Joonsoo Park
jpark@...
Apr 2, 1997 4:34 pm
4776
... Well, the security risk is doubled :-) For example, if we put certificate & private key in the smartcard, a user will have two smartcards. I don't think ...
Having problems with message search?
Fill out this form to ensure your group is one of the first to be migrated to the new message search system.
