A "medium secure" option could be using an OpenSSL wrapper with a USB conencted
SmartCard (a "custom" PROM chip would be better, but more $ and hassle) holding
the user's keys? That would be relatively simple to implement.
>To an extent, that's "security by obscurity;" the only way to make
>this /truly/ secure would require having something like the SSL
>"crypto accelerator cards" where keys can get programmed securely, in
>some offline process, and are then stored, in a tamper-resistant
>manner, in persistent memory on the card.
>--
>output = reverse("gro.gultn@" "enworbbc")
>http://cbbrowne.com/info/crypto.html
>Academics denigrating "Popularizers"
_______________________________________________
sapdb.general mailing list
[EMAIL PROTECTED]
http://listserv.sap.com/mailman/listinfo/sapdb.general
