Theodore Hope wrote:
>
>
> What does this mean in terms of the browser; does the export (40-bit)
> MSIE all of a sudden do strong crypto?
>
For SSL anyway. This does make a bit of a mockery of the export
restrictions.
Actually it's even sillier than that: SSL always uses 128 bit encryption
(as opposed to S/MIME which does "proper" 40 bit). What happens is that
40 bits are encrypted and the remaining 88 sent in the clear so even the
"40 bit export" algorithms really use 128 bit symmetric algorithms.
>
> :-( Those of us who prefer to have Thawte sign (cheaper, easier)
> are going to be out of luck for the time being.
>
I think the "magic" certificates are prohibitively expensive anyway and
need lots of bureaucratic clearance.
It would be much simpler just to suggest that fortify and Netscape is
used.
Steve.
--
Dr Stephen N. Henson.
UK based freelance Cryptographic Consultant. For info see homepage.
Homepage: http://www.drh-consultancy.demon.co.uk/
Email: [EMAIL PROTECTED]
PGP key: via homepage.
+-------------------------------------------------------------------------+
| Administrative requests should be sent to [EMAIL PROTECTED] |
| List service provided by Open Software Associates, http://www.osa.com/ |
+-------------------------------------------------------------------------+
