W3C home > Mailing lists > Public > ietf-http-wg-old@w3.org > January to April 1997

RE: Digest Authentication, Netscape, and Microsoft

From: Fisher Mark <FisherM@exch1.indy.tce.com>
Date: Thu, 17 Apr 1997 13:04:51 -0500
Message-Id: <c=US%a=_%p=THOMSON%l=TCEIS5-970417180451Z-9545@tceis5.indy.tce.com>
To: "'dan@spyglass.com'" <dan@spyglass.com>, "'Hallam-Baker Phillip M.'" <hallam@ai.mit.edu>
Cc: "'http-wg@cuckoo.hpl.hp.com'" <http-wg@cuckoo.hpl.hp.com>
Phill, you wrote:

>SSL unfortunately provides a relatively weak form of security. It
>is great if your definition of security is the use of cryptography.
>It has no real model of how it should interact with firewalls for
>example - nobody sends encrypted data through the firewalls I have
>experience with, that is part of their purpose. Nor can data from 
>an SSL transaction be cached by an intermediary.

So are you saying that all firewalls you have encountered block SSL?
For companies like us, that would seem to block the easiest method of
sending encrypted data to sites outside our firewall.  (Our firewall
does permit SSL.)  Or did you mean something else?
================================================
Mark Leighton Fisher                   Thomson Consumer Electronics
fisherm@indy.tce.com                 Indianapolis, IN
"ViaCrypt?  Vhy not!"

>
Received on Thursday, 17 April 1997 11:07:18 EDT

This archive was generated by hypermail pre-2.1.9 : Wednesday, 24 September 2003 06:32:35 EDT