Hello Patrick,
Thanks for the detailed information.
Regards
Alok Bhatnagar
- Original Message -
From: "Patrick Patterson" <[EMAIL PROTECTED]>
To:
Sent: Friday, June 20, 2008 7:26 PM
Subject: Re: Server Authentication
> Hi Alok;
>
> On June 20, 2008 09:02:
rently there isn't any. That's why Verisign wants to take over DNS, so
> that they
> can distribute certs at will - ISPs are too lasy to do that.
>
> Cheers,
> Eugen.
>
>
> - Original Message ----
> From: AlokBhatnagar <[EMAIL PROTECTED]>
> To:
, June 20, 2008 4:49:55 PM
Subject: Re: Server Authentication
Hello Sendroiu,
Thats what i was
asking
How can i get the certificates of CAs
i turst?
Regards
Alok Bhatnagar
- Original Message -
From: Sendroiu Eugen
To: openssl-users@openssl.org
Sent: Friday, June 20, 2
Hello Sendroiu,
Thats what i was asking
How can i get the certificates of CAs i turst?
Regards
Alok Bhatnagar
- Original Message -
From: Sendroiu Eugen
To: openssl-users@openssl.org
Sent: Friday, June 20, 2008 7:12 PM
Subject: Re: Server Authentication
From
th
protecting a multi-million dollar transaction, perhaps you should be being a
bit more thorough :)
Have fun!
Patrick.
> Thanks
>
> Regards
> Alok Bhatnagar
>
>
> - Original Message -
> From: "David Schwartz" <[EMAIL PROTECTED]>
> To:
>
d online a specific certificate, the simple
answer is that
you usually can't.
- Original Message
From: AlokBhatnagar <[EMAIL PROTECTED]>
To: openssl-users@openssl.org
Sent: Friday, June 20, 2008 4:02:15 PM
Subject: Re: Server Authentication
Thanks david,
I know that the do
t;
To:
Sent: Friday, June 20, 2008 6:03 PM
Subject: RE: Server Authentication
>
> > So i want to know how will my client authenticate the server
> > since i don't have the server's root certificate?
>
> > Thanks in Advance..
>
> > Regards
> > A
> So i want to know how will my client authenticate the server
> since i don't have the server's root certificate?
> Thanks in Advance..
> Regards
> Alok Bhatnagar
That is completely application-dependent. The answer will depend on what
makes the legitimate server different from an imposter.
Y
Your client needs to have a certificate issued by a CA that the server
trusts, and the server must request client authentication by
name-of-CA-that-it-will-accept. The client can then provide its
certificate (it knows which one based on the requested issuer name)
and prove ownership of the private