Re: Summary of Responses to Passwords in the Clear from Web SC Working Group

On Wed, 2008-04-09 at 15:03 -0700, David Orchard wrote:
[...]
>  2) Digest is not acceptable.  

?!

Really? That's a disappointing conclusion.

If I'm following the argument, it's because
the server doesn't authenticate to
the client in the digest protocol. Hmm.
I suppose that's a good argument. :-/



-- 
Dan Connolly, W3C http://www.w3.org/People/Connolly/
gpg D3C2 887B 0F92 6005 C541  0875 0F91 96DE 6E52 C29E

Received on Wednesday, 9 April 2008 22:26:37 UTC