> I've read the M$ blurb on the US Gov allowing the export of
> 128-bit IIS for financial use. It's not clear to me whether
> this is really strong crypto or if there's some catch.
>
> The part I don't like is that "128-bit encryption capability is
> implemented as an extension to the SSL...". Does this mean
> that it will only be compatible with MSIE, or any browser with
> strong crypto (e.g., Fortify'd Netscape)?
It is not a special extension per se (although the MSIE handling
could be called extension ;-). It is just a certificate signed by
a special CA (the certs of which are only available by financial
institutions) and the browser remembers its true strong crypto
capabilities.
The same game is with netscape. The CA in question is Verisign.
Look for Global Server ID.
--
read you later - Holger Reif
------------------------------------ Signaturprojekt Deutsche Einheit
TU Ilmenau - Informatik - Telematik (Verdamp lang her)
[EMAIL PROTECTED] Alt wie ein Baum werden, um ueber
Remus.PrakInf.TU-Ilmenau.DE/Reif/ alle 7 Bruecken gehen zu koennen
+-------------------------------------------------------------------------+
| Administrative requests should be sent to [EMAIL PROTECTED] |
| List service provided by Open Software Associates, http://www.osa.com/ |
+-------------------------------------------------------------------------+
