httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Aram W. Mirzadeh" <...@qosina.com>
Subject Re: secure transfer using skey
Date Fri, 01 Sep 1995 20:36:41 GMT

There is only one problem with skey.  Some OS's can't use it... just 
as Linux.  skey requires crypt which linux does not contain, and can't
because it's a international product.  

Although the idea is sound, skey will not work on such systems. 

<Aram>


At 11:11 AM 9/1/95 MDT, you wrote:
>
>Secure http doesn't really interest me, but I was thinking last night
>about how "skey" technology could be used to make secure transfer possible
>at no cost to end users.
>
>Basically, skey involves giving challenges which result in a 
>one-time-password, so if I'm not missing something obvious, clients
>and servers can just pass these challenges back a forth inside HTTP
>headers, and send the rest of the information encrypted using the
>one-time-password.
>
>the passwords never get transmitted over the net, only the challenges
>and encrypted data.
>
>I think the skey code is PD, so could be dropped into clients and
>servers.
>
>I must be missing something, cos this is just too simple.
>
>
>rob
>
>
--
Aram W. Mirzadeh, MIS Manager, Qosina Corporation
http://www.qosina.com/~awm/, awm@qosina.com
Apache httpd server team http://www.apache.org



Mime
View raw message