[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: The Next Hack
> In article <[email protected]>, [email protected]
> (sameer) writes:
> > Now that we've seen that Netscape is doing a good job towards
> > trying to fix the hole that Ian and David have uncovered, it's time to
> > start looking at new things.
> > Proposal for action:
Jeff writes:
> What else do you hope to gain by breaking a server key? I think
> the point has been made. Is there anything else that you would
> reasonably expect that we would do in response to a server key
> being broken that we have not already done?
>
> --Jeff
Clearly the point that Sameer is making includes the Meta crypto creed,
which is a that all security systems and they components should be
discussed and tested in public. That it is not enough to test
the client and that encryption contained in server products must
also be dragged into the day light.
Harry Hawk [email protected]
Freelancer for NetGuide Mag.
All comments are my own.