- From: Jim Gettys <jg@pa.dec.com>
- Date: Wed, 7 Jan 1998 09:52:29 -0800
- To: Paul Leach <paulle@microsoft.com>
- Cc: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com, Scott Lawrence <lawrence@agranat.com>
While I agree with both Paul and Scott on message integrity, I'd like to remind people that the BIG disaster on the Internet is password grabbing. Naive people use the same password for many things... At this point, anything that can help that problem is worth alot, eve n if it has other issues... - Jim > From: Paul Leach <paulle@microsoft.com> > Date: Wed, 7 Jan 1998 09:30:03 -0800 > To: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com, > "'Scott Lawrence'" > <lawrence@agranat.com> > Subject: RE: Digest mess > > I agree with Scott that digest without message integrity is not very secure > -- just the assurance that some part of the message was once issued by the > client. > -- Jim Gettys Industry Standards and Consortia Digital Equipment Corporation Visting Scientist, World Wide Web Consortium, M.I.T. http://www.w3.org/People/Gettys/ jg@w3.org, jg@pa.dec.com
Received on Wednesday, 7 January 1998 10:01:23 UTC