which security protocol for dealing with this situation
- From: ben@xxxxxxxxxxxxxx
- Date: Thu, 27 Sep 2007 13:45:17 -0700
which security protocol would enable two particular computers to
connect and autenticate that each other are talking to the machine
they're supposed to be?
actual situation:
piece of software running on base machine which is connected to the
net via broadband (so dynamic ip address), so it has subscribed to a
dynamic ip address service like www.dyndns.org.
mobile device with internet capability wants to connect to base
machine so uses the dyndns address. at this point the base machine
should request a password, and the mobile device user provides the
password, but something's needed to cope with a possible man in the
middle attack. assuming someone has remapped the ip address of the
base machine to themselves how can that be dealt with? which protocol,
if there is one, will do this? the base machine and mobile device can
share a secret reliably in the set up stage and possibly/probably at
later stages (because the mobile device owner and the base machine
owner are one in the same and can physically connect the two when
setting it up).
any ideas? thanks.
.
- Follow-Ups:
- Re: which security protocol for dealing with this situation
- From: Todd H.
- Re: which security protocol for dealing with this situation
- From: Steve Riley [MSFT]
- Re: which security protocol for dealing with this situation
- Prev by Date: Re: Personal Information (PI) Detection
- Next by Date: Re: which security protocol for dealing with this situation
- Previous by thread: Personal Information (PI) Detection
- Next by thread: Re: which security protocol for dealing with this situation
- Index(es):
Relevant Pages
|
|
