http://technology.scmp.com/cgi-bin/gx.cgi/AppLogic+FTContentServer?pagename=SCMP/Printacopyaid=ZZZRFQ7QX6D
Thursday, October 10, 2002
Hacker starts security company
AGENCE FRANCE-PRESSE in Washington
Kevin Mitnick, the cult figure hacker jailed for breaking into big
corporate computer
Perry E. Metzger wrote:
Beyond the openssl tools (which are quite primitive), are there any
open source certificate authority tools out there at the moment that
people can recommend?
CSP http://devel.it.su.se/projects(openssl perl wrapper) is used by
some members of SwUPKI
Hi,
On Wed, Oct 09, 2002 at 11:03:35AM -0400, Perry E. Metzger wrote:
Beyond the openssl tools (which are quite primitive), are there any
open source certificate authority tools out there at the moment that
people can recommend?
here a list I onced compiled:
Set up your own
On Wed, Oct 09, 2002 at 11:03:35AM -0400, Perry E. Metzger wrote:
Beyond the openssl tools (which are quite primitive), are there any
open source certificate authority tools out there at the moment that
people can recommend?
www.openca.org?
Web based. LDAP backend.
- Original Message -
From: Roy M.Silvernail [EMAIL PROTECTED]
And here, I thought that a portion of the security embodied in a SecurID
token was the fact that it was a tamper-resistant, independent piece of
hardware. Now M$ wants to put the PRNG out in plain view, along with its
seed
Tamper-resistant hardware is out, second channel with remote source is in.
Trust can be induced this way too, and better. There is no need for
PRNG in plain
view, no seed value known. Delay time of 60 seconds (or more) is fine
because
each one-time code applies only to one page served.
Roy M.Silvernail [EMAIL PROTECTED] writes:
The first initiatives will centre on Microsoft's licensing of RSA SecurID
two-factor authentication software and RSA Security's development of an RSA
SecurID Software Token for Pocket PC.
And here, I thought that a portion of the security
http://www.opencerts.com/
-Original Message-
From: Perry E. Metzger [mailto:[EMAIL PROTECTED]]
Sent: 09 October 2002 16:04
To: [EMAIL PROTECTED]
Subject: open source CAs?
Beyond the openssl tools (which are quite primitive), are there any
open source certificate authority tools
OpenCA?
At one point I wrote some PERL around OpenSSL called WebCA, but I
don't know what became of that. I don't think it was ever released.
-derek
Perry E. Metzger [EMAIL PROTECTED] writes:
Beyond the openssl tools (which are quite primitive), are there any
open source certificate
Tamper-resistant hardware is out, second channel with remote source is in.
Trust can be induced this way too, and better. There is no need for PRNG in plain
view, no seed value known. Delay time of 60 seconds (or more) is fine because
each one-time code applies only to one page served.
Please
On 9 Oct 2002, Perry E. Metzger wrote:
Well if you're into J2EE check ejbca.sourceforge.net out.
From the about page:
EJBCA is a fully functional Certificate Authority. Based on J2EE
technology it constitutes a robust, high performance and component based
CA. Both flexible and platform
CALL FOR PAPERS
May 11-14,2003
The Claremont Resort
Oakland, California, USA
2003 IEEE Symposium on
Security and Privacy
sponsored by
IEEE Computer Society Technical Committee on Security and Privacy
in cooperation with
The International Association for Cryptologic Research (IACR)
Symposium
12 matches
Mail list logo