Re[2]: POSTing to a secure server ...

This WebDNA talk-list message is from

2000


It keeps the original formatting.
numero = 27619
interpreted = N
texte = Although the RSA algorithms are indeed patented (through Sept 2000), there are other algorithms that are now public domain like DES. All SSL implementations understand multiple encryption schemes. The OpenSSL library explicitly includes options to exclude specific cyphers (like RSA and DSA) and would then be legal to use without a license.Even though DES is considered less secure than RC5 et al, for SSL it is perfectly acceptable, since the transaction is so brief compared to how long it would take to decrypt it. Yes, someone could use a sniffer to capture the transactions and decrypt them off line; but if some is using a sniffer in the first place, they probably have resources that would allow them to break into the host machine itself.John Peacock ____________________Reply Separator____________________ Subject: Re: POSTing to a secure server ... Author: (WebCatalog Talk) Date: 2/15/00 8:53 PM The availability of the modules does not obviate the need for licensing. Some RSA licenses are free for non-commercial use, but I doubt that any commercial use is free. The code alone is not the issue, it's the patent and their licensing practices.David------------------------------------------------------------- Brought to you by CommuniGate Pro - The Buzz Word Compliant Messaging Server. To end your Mail problems go to .This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Associated Messages, from the most recent to the oldest:

    
  1. Re[2]: POSTing to a secure server ... (jpeacock@univpress.com 2000)
Although the RSA algorithms are indeed patented (through Sept 2000), there are other algorithms that are now public domain like DES. All SSL implementations understand multiple encryption schemes. The OpenSSL library explicitly includes options to exclude specific cyphers (like RSA and DSA) and would then be legal to use without a license.Even though DES is considered less secure than RC5 et al, for SSL it is perfectly acceptable, since the transaction is so brief compared to how long it would take to decrypt it. Yes, someone could use a sniffer to capture the transactions and decrypt them off line; but if some is using a sniffer in the first place, they probably have resources that would allow them to break into the host machine itself.John Peacock ____________________Reply Separator____________________ Subject: Re: POSTing to a secure server ... Author: (WebCatalog Talk) Date: 2/15/00 8:53 PM The availability of the modules does not obviate the need for licensing. Some RSA licenses are free for non-commercial use, but I doubt that any commercial use is free. The code alone is not the issue, it's the patent and their licensing practices.David------------------------------------------------------------- Brought to you by CommuniGate Pro - The Buzz Word Compliant Messaging Server. To end your Mail problems go to .This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to jpeacock@univpress.com

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

RE: Redirect (1998) When do we get to request new features? (1999) PROBLEM (1997) Re:quit command on NT (1997) Security Issues and WebCommerce Solution (1997) [WebDNA] How to use [function] (2012) Requiring that certain fields be completed (1997) Context and commands (1998) [format xs] freeze (1997) [WriteFile] problems (1997) SetLineItem (1997) [TaxableTotal] - not working with AOL and IE (1997) surf express & webcat (1998) [LOOP]/[BREAK] bug (2000) WCS Newbie question (1997) why am I getting an authenticate dialog with no [protect]? (2000) Multiple catalog databases and showcart (1997) Multiple Newcarts (1996) Need help!! on searching in two databases. (1998) Running _every_ page through WebCat ? (1997)