Re: HTTPS mutual authentication alpha release - please test

On 11/3/05, Nick Owen <[EMAIL PROTECTED]> wrote: > cyphrpunk wrote: > > On 10/31/05, Nick Owen <[EMAIL PROTECTED]> wrote: > > > >>The system works this way: Each WiKID domain now can include a > >>'registered URL' field and a hash that website's SSL certificate. When > >>a user wants to log onto a

Re: HTTPS mutual authentication alpha release - please test

On 11/3/05, Nick Owen <[EMAIL PROTECTED]> wrote: > The token client pulls down a hash of the certificate from the > WiKID server. It pulls the certificate from the website and performs a > hash on it. It compares the two hashes and if they match, presents the > user with the OTP and the message: >

Re: [EMAIL PROTECTED]: Skype security evaluation]

On 10/31/05, Kuehn, Ulrich <[EMAIL PROTECTED]> wrote: > There are results available on this issue: First, a paper by > Boneh, Joux, and Nguyen "Why Textbook ElGamal and RSA Encryption > are Insecure", showing that you can essentially half the number > of bits in the message, i.e. in this case the s

Re: [Clips] Sony to Help Remove its DRM Rootkit

R.A. Hettinga wrote: > Unfortunately, this is an exaggeration of what Sony have agreed to do - they have issued an installable which removes the filename cloaking component while leaving the rest (primarily, the

Re: HTTPS mutual authentication alpha release - please test

cyphrpunk wrote: > On 11/3/05, Nick Owen <[EMAIL PROTECTED]> wrote: > >>The token client pulls down a hash of the certificate from the >>WiKID server. It pulls the certificate from the website and performs a >>hash on it. It compares the two hashes and if they match, presents the >>user with the