dopting OpenSSL.
Again, I'm no lawyer!
Relying on OS configuration is more difficult, especially for Linux, as I need
to now build against many linux distro's to get things right. Thanks
to virtual environments, this is at least manageable.
At 11:09 AM 10/28/2011, Kristen J.
Otherwise, it would seem that something as easy and well
documented as creating a CSR could be a lot more coding...
Many thanks for all the useful comments!
Kris
On 10/27/11 7:20 AM, Michael S. Zick wrote:
On Wed October 26 2011, Kristen J. Webb wrote:
Having an app that can use certs, it
a
On 10/26/11 6:35 PM, Wim Lewis wrote:
On 7 Oct 2011, at 7:40 PM, Kristen J. Webb wrote:
I'm exploring the security of TLS for TCP/IP connections.
I would like to establish TLS connections using server certificates
(managing client certs via external or internal PKI is painful
On 10/8/11 1:16 AM, Michael Sierchio wrote:
On Fri, Oct 7, 2011 at 7:40 PM, Kristen J. Webb wrote:
My understanding is that a TLS connection with a server cert
only identifies the server to the client. This leads to a MiTM
attack, where the mitm can impersonate the client because the
t TLS connection from client
client/target_server: verify additional encrypted data (from initiate_server)
to establish a connection
My apologies if this is obviously weak. I could not find much info on
the web related to this type of multi-connection approach using TLS.
Kris
--
Mr. Kristen J. Webb
Terad
