Home page logo

basics logo Security Basics mailing list archives

SSL issues - selling on borrowed/rented security
From: AgfTech Lists <lists () agftech com>
Date: 04 Mar 2004 16:49:52 -0600

Hello all

I am starting to conduct a research on the following

There are vendors leasing out shopping carts and SSL to their customers
who want to do e-commerce and attract them by providing a bundle package
of templates, shopping cart and SSL.

I would be apprehensive, as other Internet Security aware people, to buy
from a site that does not have their own SSL. Simply because the
authenticity of the company is not proven. May be the shopping cart
people do some checks, but I know most of them don't. 

Moreover, Is this lawfully permissible? Maybe not the best thing to ask
otherwise so many people would not have been doing it. But is it right
to do so and is it not a security concern?

I have experienced sales go up with some sites because now they moved
from a rented shopping cart/SSL to their own. Is there any research that
has been done in the past on something like this?

I would appreciate all your views.

Aman Raheja
AGF Technologies

Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 

  By Date           By Thread  

Current thread:
  • SSL issues - selling on borrowed/rented security AgfTech Lists (Mar 05)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]