Without more knowledge of the parameters of the system
(especially the threat model), it's hard to say -- however,
this sounds like a case for the Diffie-Hellman key agreement
protocol. Have the client and server each pick a random
number, and then use those numbers to generate a key
dynamicall
> I'm passing some data through a web client [applet-like] and am planning
> on using some crypto to help ensure the data's integrity when the applet
> sends it back to me after it has been processed.
Help us to understand your threat model. Do you trust the user and
his/her machine, but are wo
John Saylor wrote:
> Hi
>
> I'm passing some data through a web client [applet-like] and am planning
> on using some crypto to help ensure the data's integrity when the applet
> sends it back to me after it has been processed.
>
> The applet has the ability to encode data with several well known
> Is it better to have the key encoded in the binary, or to pass it a
> plain text key as one of the parameters to the applet?
Have the applet downloaded over an SSL connection along with a random key as
a parameter. Both will be protected using SSL, and then the applet can use
the key to communi
Hi
I'm passing some data through a web client [applet-like] and am planning
on using some crypto to help ensure the data's integrity when the applet
sends it back to me after it has been processed.
The applet has the ability to encode data with several well known
symmetric ciphers.
The problem
