David A. Lee wrote:
>
> For example, IIS Server and IE and Netscape clients never ask me for
> pass phrases when using certificates. Does this mean as I suspect
> that those products are not really secure ? Or have they found another
> method to protect certificates from copying without requirin
"David A. Lee" wrote:
>
> I'm adding in SSL into a closed-system/product. I'm concerned about the
> protection of the client-side certificates. My (limited) understanding of
> crypto
> says that its critical to protect the client certificate otherwise
> authentication
> is compromised (anyone
I'm adding in SSL into a closed-system/product. I'm concerned about the
protection of the client-side certificates. My (limited) understanding of
crypto
says that its critical to protect the client certificate otherwise
authentication
is compromised (anyone who can copy the client certificate ca