Hi All, Thanks again to all here who helped me with my understanding of Certificates.
It is likely that we would want to embed some additional data in client certificates to further enhance security. For example we may wish to include a (list of) IP address(es) that the client can connect from and reject those not on the list. Alternatively we could create a database of clients and their IP addresses on the server and perform a lookup based on some unique identifier in the client certificate. I would be greatful for ideas on the way to go here and how to implement it. I am trying to allow for the case that the client may have their private key lost or stolen. TIA for any help... Best Regards, Mark ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
