Tom Metro wrote:
Far from a perfect solution, but its cheaper and a better user
experience than two-factor.
It's X.509 PKI key exchange. SSL is built on top of an X.509 PKI.
X.509 is far from perfect. Very far. X.509 was designed by committee. It
shows in its fundamental weaknesses (such as reliance on the trust of
third party certificate authorities) and implementation weaknesses (too
numerous to list). Better systems exist. Hell, better systems existed
before X.509 did.
--
Rich P.
_______________________________________________
Discuss mailing list
[email protected]
http://lists.blu.org/mailman/listinfo/discuss
