The real problem that https has conspicuously failed to fix
Nomen Nescio
nobody at dizum.com
Thu Jun 12 04:50:10 EDT 2003
Jeffrey I. Schiller writes:
> Oh, and btw, the form posting URL in my message wasn't even https, it
> was just http. So all the futzing in the world with https wouldn't help!
Of course it would help. Have you been following this discussion
at all? The idea is to eliminate passwords as being of any value in
getting access to PayPal or other ecommerce sites, by replacing them
with client certificates. This implies using https or something
cryptographically similar.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list