Re: How to forbid unencrypted Keys?
From: Wolfgang (nobody_at_pappnas.de)
Date: 03/21/05
- Previous message: karldavidson_at_gmail.com: "Re: Messages in my log file."
- In reply to: Juha Laiho: "Re: How to forbid unencrypted Keys?"
- Next in thread: Darren Tucker: "Re: How to forbid unencrypted Keys?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 21 Mar 2005 23:28:26 +0100
This as also my first idea, the client tells the server if the key is
encrypted with a password or send via agent. This can be faked to
easily, but would be a good thing in corporate environments.
THe second though is, it must be a inherent property of the key, similar
to timestamps of digital signatures.
>
> Other idea: I'm not sure whether there is any reliable way for the server
> to find out how the key is stored on the client. The simple way would be
> to have the client tell the server "yes, the key was retrieved from
> encrypted storage" or "the key was stored as plaintext" - but then,
> I don't see a way how the client could prove this.
- Previous message: karldavidson_at_gmail.com: "Re: Messages in my log file."
- In reply to: Juha Laiho: "Re: How to forbid unencrypted Keys?"
- Next in thread: Darren Tucker: "Re: How to forbid unencrypted Keys?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
