Re: Server Authentication

2008-06-20 Thread AlokBhatnagar
Hello Patrick, Thanks for the detailed information. Regards Alok Bhatnagar - Original Message - From: "Patrick Patterson" <[EMAIL PROTECTED]> To: Sent: Friday, June 20, 2008 7:26 PM Subject: Re: Server Authentication > Hi Alok; > > On June 20, 2008 09:02:

Re: Server Authentication

2008-06-20 Thread Kyle Hamilton
rently there isn't any. That's why Verisign wants to take over DNS, so > that they > can distribute certs at will - ISPs are too lasy to do that. > > Cheers, > Eugen. > > > - Original Message ---- > From: AlokBhatnagar <[EMAIL PROTECTED]> > To:

Re: Server Authentication

2008-06-20 Thread Sendroiu Eugen
, June 20, 2008 4:49:55 PM Subject: Re: Server Authentication Hello Sendroiu, Thats what i was asking How can i get the certificates of CAs i turst? Regards Alok Bhatnagar - Original Message - From: Sendroiu Eugen To: openssl-users@openssl.org Sent: Friday, June 20, 2

Re: Server Authentication

2008-06-20 Thread AlokBhatnagar
Hello Sendroiu, Thats what i was asking How can i get the certificates of CAs i turst? Regards Alok Bhatnagar - Original Message - From: Sendroiu Eugen To: openssl-users@openssl.org Sent: Friday, June 20, 2008 7:12 PM Subject: Re: Server Authentication From

Re: Server Authentication

2008-06-20 Thread Patrick Patterson
th protecting a multi-million dollar transaction, perhaps you should be being a bit more thorough :) Have fun! Patrick. > Thanks > > Regards > Alok Bhatnagar > > > - Original Message - > From: "David Schwartz" <[EMAIL PROTECTED]> > To: >

Re: Server Authentication

2008-06-20 Thread Sendroiu Eugen
d online a specific certificate, the simple answer is that you usually can't. - Original Message From: AlokBhatnagar <[EMAIL PROTECTED]> To: openssl-users@openssl.org Sent: Friday, June 20, 2008 4:02:15 PM Subject: Re: Server Authentication Thanks david, I know that the do

Re: Server Authentication

2008-06-20 Thread AlokBhatnagar
t; To: Sent: Friday, June 20, 2008 6:03 PM Subject: RE: Server Authentication > > > So i want to know how will my client authenticate the server > > since i don't have the server's root certificate? > > > Thanks in Advance.. > > > Regards > > A

RE: Server Authentication

2008-06-20 Thread David Schwartz
> So i want to know how will my client authenticate the server > since i don't have the server's root certificate? > Thanks in Advance.. > Regards > Alok Bhatnagar That is completely application-dependent. The answer will depend on what makes the legitimate server different from an imposter. Y

Re: Server Authentication

2008-06-20 Thread Kyle Hamilton
Your client needs to have a certificate issued by a CA that the server trusts, and the server must request client authentication by name-of-CA-that-it-will-accept. The client can then provide its certificate (it knows which one based on the requested issuer name) and prove ownership of the private