>>> Miles Sabin <[EMAIL PROTECTED]> 10/14/99 5:00:34 PM >>>
>For instance, how to you handle the initial
>key exchange?
By manual methods...
>Plenty of ways to be sure, but mostly a
>great deal more long winded than using https (eg. "To
>register with this site you must first install PGP" ;-)
You're right that it's not as good as HTTPS. But as far as I know
there are no servlet engines that support HTTPS. HTTPS also has the
following problems:
1. use outside the US isn't exactly easy, though I appreciate Apache
has https because of mod_ssl (but then that don't work inside US)
2. it's quite compelx for users to setup (they have to go an get
certificates and so on - people are just confused by all of this)
3. one can have trouble using ANY ports other than 80 across ultra
conservative firewalls.
(I'm sure you know all this - for the benefit of those following the
discussion)
The benefits of my system are that it's quick and achievable.
Drawbacks are:
- you probably MUST have users you know about outside of the web (ie:
sending them postal keys)
- the applet thing which you address thus:
>If an eavesdropper had access to a malicious or
>compromised intemediary proxy then it'd actually be
>extremely easy for them to catch applets and tweak them
>on the fly, and there are no java security checks which
>would save you.
I don't see this... There are all sorts of tricks you can use to see
if someone alters the applet as it crosses the wire... remember that
it is only the first instance that is important (because after that
you're just using the same applet)
So.. the first instance could be checksummed... check for proxies
across it's route and ensure that JS knows etc...
I don't think it's as depressing as you say - BUT! that doesn't mean
I'm saying this is as secure as SSL.
What I meant by my "nearlly as good" statement was that, considering
the problems with SSL (including no servlet engine) and considering
that this method works then it's not a bad fit.
You wouldn't want to send national secrets over it, or even credit
card details (though there are plenty of people happy to send these in
the clear) but it is something and something is better than nothing.
Nic
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
