Re: Solutions against the man in the middle

From: Mike (michael.owen_at_hushmail.com)
Date: 02/13/04


Date: 13 Feb 2004 00:01:11 -0800

stmik52@hotmail.com (Tony) wrote in message news:<bd815ec2.0402120103.24582dec@posting.google.com>...
> Yes this is the type of threat I am refering to.
> Is there any software or arrangement that exist and can be found
> somewhere that is capable of protecting against that? For example any
> special authentication schemes that could be used on an existing VPN
> or any encrypted communication service offered offered as a "turn key"
> by any company that is capable of protecting against it.
>
> Tony

Two-way SSL authentication using certificates should do it. As ever,
the main issue would be cert management, and a user base which
actually understands the error messages that would pop up if a MITM
were attempted.

--
Mike