Re: Client Certificates

From: Bernd Eckenfels (
Date: 08/30/02

From: Bernd Eckenfels <>
Date: 30 Aug 2002 09:18:08 GMT

In Ryan <> wrote:
> When using client certifcates to validate clients, what
> mechanisms exist to prevent someone from stealing a cert,
> and pretending to be someone else? I am trying to figure
> out the most secure way to verify clients when they are
> using client side certs.

you must store them on a smart card or other type of secure token.