WebApp Sec mailing list archives
RE: key storage
From: Frank Knobbe <frank () knobbe us>
Date: Sat, 04 Sep 2004 13:57:17 -0500
On Sat, 2004-09-04 at 13:53, Frank Knobbe wrote:
Shops with SSL terminating load-balancers (for intrusion detection reasons) already take advantage of that... although they are mostly unaware of that :)
In all fairness I should mention that these shop lose the advantage of SSL to the server which allows an intruder to sniff the traffic at the server. But at least they don't get the certificate. Of course the question is, which is more important. Confidentiality of the key, or confidentiality of the date you are trying to protect :) Cheers, Frank
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- RE: key storage, (continued)
- RE: key storage Ajay (Aug 28)
- RE: key storage Brown, James F. (Aug 30)
- RE: key storage Ajay (Aug 30)
- RE: key storage Brown, James F. (Aug 30)
- RE: key storage Scovetta, Michael V (Aug 31)
- RE: key storage Roman Fail (Aug 31)
- RE: key storage Ajay (Aug 31)
- Re: key storage George Capehart (Sep 02)
- RE: key storage Mark Curphey (Sep 05)
- RE: key storage Frank Knobbe (Sep 04)
- RE: key storage Frank Knobbe (Sep 04)
- Re: key storage George Capehart (Sep 04)
- Re: key storage Frank Knobbe (Sep 04)
- Re: key storage George Capehart (Sep 04)
- Re: key storage Ajay (Sep 05)