Here are few informations about Internet Security: - https involves server and/or client certificates - client/server certificates must be in standard form X.509 - for Intel/WINNT platforms you can use MS Certificate Server to generate client or server certificates (Option Pack 4) - for other platforms: SSLeay, Verisign, etc.. - client and sever involved in the https communication must be ssl-enabled (the protocol used in https). Current version is 3.0 and it's supported by Navigator 4.x and Internet Explorer 4.x - for more information write me directly or visit: developer.netscape.com or microsoft security page at www.microsoft.com -----Messaggio originale----- Da: Tom Kochanowicz <[EMAIL PROTECTED]> A: [EMAIL PROTECTED] <[EMAIL PROTECTED]> Data: marted� 9 marzo 1999 22.22 Oggetto: JWS authstore questions >I do not know much about security and would appreciate answers to any of >the following questions. > >- When using authstore and you set up a self-signed certificate do you >have to modify your servlet code to accept certificates? > >- When you set up SSL self-signed certificates do you use the https >protocol and is your servlet located in the same directory (servlets) >but connect to a different port? > >- What advantages are there over commercial certificates (Veri-Sign) vs. >self signed? > >- Is it expensive to set up commercial certificates? > >- Are there any good examples sites or reference material on setting up >SSL? > >Tom K. > >___________________________________________________________________________ >To unsubscribe, send email to [EMAIL PROTECTED] and include in the body >of the message "signoff SERVLET-INTEREST". > >Archives: http://archives.java.sun.com/archives/servlet-interest.html >Resources: http://java.sun.com/products/servlet/external-resources.html >LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
