>Both Verisign and Thawte(verisign) are currently offering so-called
>Super Certificates that enable 128 bit encryptation with export (40
>bit) browsers.
It works like this. The super-certs are signed by a special CA. Recent
releases of IE and Netscape recognize that CA. If an SSL connection is made
to a server whose cert comes from that CA, then the browser -- even an
"export" browser -- will use full-strength crypto.
With the latest change in US export regulations, there is no longer any need
to have domestic and export browsers. So you only need one of these special
certs if you have an installed client base that can't be upgraded.
/r$
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
