[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
Re: [xml-dev] 2007 Predictions
- From: Richard Salz <rsalz@us.ibm.com>
- To: Tei <oscar.vives@gmail.com>
- Date: Mon, 15 Jan 2007 13:39:25 -0500
> - protected from nake eye inspection of actual data HTTP move
Yes. In another post I say that this is all you get.
> - validate server identity, that can serve to avoid phising or DNS
spoofing.
Maybe. If I can get a cert from one of the common vendors that "looks
like" the name being spoofed, the no.
> - protected content from malware javascript/html inyection
Yes, but I don't think this is concern anyway. Are there any real 'man in
the middle' attacks today? So this is really the same as 'validate
identity'
> - validate client identity? (not idea about this, but I think is
posible)
Yes, it is possible.
> - cypher is strong against brute force
This is really the same as #1.
> - cypher strong against password distribution problem (PKI dont need
> that ...much)
> Other than that. Again. Maybe was not soo a good idea, cause people
> want fast porn. Not safe or private porn. Wait... bad analogy.
Funny.
/r$
--
STSM
Senior Security Architect
DataPower SOA Appliances
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
