[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Netscape security

To: [email protected] (R. J. Harvey)
Subject: Re: Netscape security
From: [email protected] (Adam Shostack)
Date: Fri, 18 Aug 1995 11:09:02 -0400 (EDT)
Cc: [email protected]
In-Reply-To: <[email protected]> from "R. J. Harvey" at Aug 18, 95 10:11:07 am
Sender: [email protected]

	To clear up some apparent confusion: The Commerce server is
not the certificate.  The NSCP Commerce Server is an httpd.
Non-profits and educationals still need to pay Verisign for a
certificate.  They do not need to pay NSCP for a $5,000 web server.

	The certificates must be signed by an approved key signing
agency.  Anyone can produce one; to get it to interact 'securely' with
free netscape browsers you need the certificate to be signed.

	There is no word as to how to become a KSA.  Netscpe has
ignored the question on several occaisons.

Adam

| On the subject of Netscape:
|    Now that Netscape is making the Commerce Server available
| for free to students, faculty, libraries, etc. (i.e., groups
| with limited ability to cough-up $290 to RSA to get the 
| 1-year digitially-signed certificate needed to make it operate 
| in "secure mode"), does anyone know of alternative methods for 
| producing such certificates?  


-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume

Follow-Ups:
- Re: Netscape security
  - From: sameer <[email protected]>

References:
- Re: Netscape security
  - From: [email protected] (R. J. Harvey)

Prev by Date: Re: Netscape security
Next by Date: Re: Cost to Crack Keys
Prev by thread: Re: Netscape security
Next by thread: Re: Netscape security
Index(es):
- Date
- Thread