Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

webappsec logo WebApp Sec mailing list archives

public key distribution schemes
From: Ajay <abra9823 () mail usyd edu au>
Date: Thu, 7 Oct 2004 23:35:19 +1000
hi!

i have an application where users download some XML files from a server.
Users also download RSA signatures for those files.
The users then load the file and corresponding signature into a component
of the application and it performs a RSA verify operation.

what i'd like to know is how to get the server's public key (to perform the
verify) to the user?

one solution that presents itself is to have a CA signed server certificate
which contains its public key. but then the question is how does the user
get the server certificate.

thanks

cheers

----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.

  By Date           By Thread  

Current thread:
  • public key distribution schemes Ajay (Oct 07)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]