Re: To SSL-client-auth or not to SSL-client-auth, that is the question(?)

Jean-Marc Desperrier wrote:... >Anders Rundgren wrote: >>[...] >> There is though a general weakness in schemes that do not terminate >> the client-side in the SSL channel [...] >> this deficiency is eliminated by >> "targeting" the client-side operation for the site and certificate in >> the serve

Re: To SSL-client-auth or not to SSL-client-auth, that is the question(?)

Anders Rundgren wrote: [...] There is though a general weakness in schemes that do not terminate the client-side in the SSL channel [...] this deficiency is eliminated by "targeting" the client-side operation for the site and certificate in the server-end. By doing that the receiver (server), can