WebApp Sec mailing list archives
Re: encryption over the web
From: Paul Johnston <paul () westpoint ltd uk>
Date: Mon, 14 Jun 2004 17:03:12 +0100
Hi,SSL is the only proper solution. However, there is a small movement of JavaScript crytographers. My JS MD5 script (http://pajhome.org.uk/crypt/md5) can be used to protect login passwords by doing some kind of challenge-hash authentication protocol. There is also JS Rijndael, RSA and more. An interesting application is JS self-decrypting archives (http://sda.gmxhome.de/sdaeng.htm) which are similar in principal to PGP SDAs.
Hope this helps, Paul OPTUSBYS wrote:
Hi there, If I were to enable encryption security for authorized people to access myweb page, how many implementation options there are available?Is SSL the only option to think of? Thank you. Regards,Seeker
-- Paul Johnston Internet Security Specialist Westpoint Limited Albion Wharf, 19 Albion Street, Manchester, M1 5LN England Tel: +44 (0)161 237 1028 Fax: +44 (0)161 237 1031 email: paul () westpoint ltd uk web: www.westpoint.ltd.uk
Current thread:
- RE: SQL Injection, (continued)
- RE: SQL Injection Michael Howard (Jun 09)
- RE: SQL Injection Michael Silk (Jun 09)
- RE: SQL Injection WebAppSecurity [Technicalinfo.net] (Jun 10)
- RE: SQL Injection stevenr (Jun 09)
- RE: SQL Injection Michael Silk (Jun 09)
- RE: SQL Injection V. Poddubniy (Jun 10)
- encryption over the web OPTUSBYS (Jun 14)
- Re: encryption over the web Sam (Jun 14)
- Re: encryption over the web Keith W. McCammon (Jun 14)
- Re: encryption over the web Ivan Krstic (Jun 14)
- Re: encryption over the web Paul Johnston (Jun 14)
- Re: encryption over the web Pawel Jablonski (Jun 14)
- Re: encryption over the web Frank Knobbe (Jun 16)
- RE: encryption over the web Fan Zhang (Jun 16)
- Re: encryption over the web Lucas Holt (Jun 16)
- Re: encryption over the web Michael Ströder (Jun 17)
- Re: encryption over the web exon (Jun 17)
- encryption over the web OPTUSBYS (Jun 14)
- Re: SQL Injection Stephen de Vries (Jun 11)
- Re: SQL Injection Rogan Dawes (Jun 14)
- Re: SQL Injection David Cameron (Jun 16)