Re: Client CertificatesFrom: Bernd Eckenfels (firstname.lastname@example.org)
- Next message: Bernd Eckenfels: "Re: Client Certificates"
- Previous message: Bernd Eckenfels: "Re: syntax for netcat listening from multiple target hosts any port"
- In reply to: : "Client Certificates"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Bernd Eckenfels <email@example.com> Date: 30 Aug 2002 09:18:08 GMT
In comp.security.unix Ryan <firstname.lastname@example.org> wrote:
> When using client certifcates to validate clients, what
> mechanisms exist to prevent someone from stealing a cert,
> and pretending to be someone else? I am trying to figure
> out the most secure way to verify clients when they are
> using client side certs.
you must store them on a smart card or other type of secure token.