Great Circle Associates Firewalls
(October 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: RE: 'The best way' to authenticate on a Web Server
From: Steve Gaarder <gaarder @ actech . com>
Date: Mon, 20 Oct 1997 14:01:37 -0400 (EDT)
To: firewalls @ greatcircle . com
Cc: viggiani @ hotmail . com
In-reply-to: <21355A7DCA15D111A2DD0040051475231344 @ cer . credo . net>
References: <21355A7DCA15D111A2DD0040051475231344 @ cer . credo . net> 
I would recommend a sercure (SSL) web server and certificate
authentication.  If the machines that the users are using cannot be
trusted, put the certificate on a smart card.  The smart card contains
a small CPU and memory, and all the calculations involving the private
key happen on the card - the private key cannot be read directly.  We
looked at Webid and related products, but the smart cards are both
more secure and easier to use.  Litronics and Datakey
(http://www.datakey.com), among others, make smart cards and readers.

Steve Gaarder                      Network and Systems Administrator
gaarder @
 cmold .
 com                  C-MOLD, Ithaca, N.Y., USA
References:
Indexed By Date Previous: [no subject]
From: Carlos Gonzalez <Carlos . Gonzalez @ digital . com>
Next: Microsoft Exchange through FWTK
From: David Schnardthorst <ds3721 @ stryder . com>
Indexed By Thread Previous: RE: 'The best way' to authenticate on a Web Server
From: John Whittaker <john @ credo . net>
Next: RE: 'The best way' to authenticate on a Web Server
From: "Davis, Rob" <rdavis @ lucentncg . com>
Google
 
Search Internet Search www.greatcircle.com