PKI - Breaking the Yellow Lock

Absolutely Accurate and Eloquently Put.

That is like catching a plane from New York to Washington, and then complaining that you have to find a way from the airport to your house when you have a perfectly valid airline ticket. The job of PKI is to ensure that the information arrives at the web server in an untampered, unaltered, and unsnooped manor. In general that is what it does, with a very high level of success. The investment in set-up to get around the normal SSL to MiM it is not worth the gains generally. Once the data has arrived at the server it is the job of the system designers to ensure that it is used and stored properly.

This is not the story the headline sold.

Nor is it even well written for that matter.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/60/10901#10901

PKI - Breaking the Yellow Lock 2002-02-20
Anonymous

PKI - Breaking the Yellow Lock 2002-02-18
Anonymous

PKI - Breaking the Yellow Lock 2002-02-19
A concerned person

PKI - Breaking the Yellow Lock 2002-02-19
A concerned person (1 replies)

PKI - Breaking the Yellow Lock 2002-02-20
WillieWang

PKI - Breaking the Yellow Lock 2002-02-20
emts@telstra.com (1 replies)

PKI - Breaking the Yellow Lock 2002-02-23
Anonymous

PKI - Breaking the Yellow Lock 2002-02-21
Anonymous (1 replies)

PKI - Breaking the Yellow Lock 2002-02-22
Anonymous

To the Author 2002-02-27
Anonymous (1 replies)

To the Author 2002-03-02
Anonymous (1 replies)

To the Author 2002-03-04
Anonymous

Problem with Applications Not with Certification Authorities 2002-03-05
Lalit Bhangale

PKI - Breaking the Yellow Lock 2002-03-06
Milind Gokhale