Home page logo

webappsec logo WebApp Sec mailing list archives

Re: encryption over the web
From: Paul Johnston <paul () westpoint ltd uk>
Date: Mon, 14 Jun 2004 17:03:12 +0100


SSL is the only proper solution. However, there is a small movement of JavaScript crytographers. My JS MD5 script (http://pajhome.org.uk/crypt/md5) can be used to protect login passwords by doing some kind of challenge-hash authentication protocol. There is also JS Rijndael, RSA and more. An interesting application is JS self-decrypting archives (http://sda.gmxhome.de/sdaeng.htm) which are similar in principal to PGP SDAs.

Hope this helps,



Hi there,

If I were to enable encryption security for authorized people to access my
web page, how many implementation options there are available?
Is SSL the only option to think of?

Thank you.


Paul Johnston
Internet Security Specialist
Westpoint Limited
Albion Wharf, 19 Albion Street,
Manchester, M1 5LN
Tel: +44 (0)161 237 1028
Fax: +44 (0)161 237 1031
email: paul () westpoint ltd uk
web: www.westpoint.ltd.uk

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]