[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

authenticating intrahost crypto providers

To: [email protected]
Subject: authenticating intrahost crypto providers
From: [email protected] (James Leppek)
Date: Thu, 18 Jan 96 11:37:44 EST
Sender: [email protected]


I have been doing some research on the development of an abstract
security services API(not just a CAPI) and have hit a road block. 
The problem revolves around the need to authenticate a 
security service provider to an application. I noticed 
that microsoft has followed a path of providing
a signature in each external provider but the feeling is that this
is not that difficult to circumvent. I have the same misgivings but cannot
come up with anything else. Are my misgivings unfounded???
What are some other possibilities to allow intrahost (application)
authentication of services. Do you need to actually have a cryptographic
binding of services?

Comments....

Jim Leppek
[email protected]
Harris Corporation

Prev by Date: Re: Ozzie Apes Jim Clark, Fix Is In to Cave and Cry
Next by Date: Indecent Trash
Prev by thread: Re: NSA vacuuming down Internet traffic
Next by thread: Re: authenticating intrahost crypto providers
Index(es):
- Date
- Thread