Dear all,
I am currently involved in an online Internet shopping project. I have
some questions regarding the digital certificate and signature stuffs.
We have employed IIS 4.0 as a web server and Oracle 8 as a back-end
database. Basically, we authenicate users by their user name and
password as well as a valid digital certificate. We will then match the
information obtained from the certificate with the predefined user
profile stored in the database. In addition, SSL is used to encrypt data
during tranmission.
The question is that I am not quite sure how to handle the users'
digital signature properly. Do I need an extra plug-in for my web to
force the users to sign their message everytime they send an order ? I
am surprise that I cannot find any web site that make use of digital
signature to protect against non-repudation. Please direct me if any.
Thanks !!
Keith
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
