[cryptography] phishing/password end-game (Re: Why anon-DH ...)

James A. Donald jamesd at echeque.com
Thu Jan 17 17:12:27 EST 2013

On 2013-01-18 1:17 AM, Thierry Moreau wrote:
> First, replace "client certificate" by client PPKP (public-private
> key pair) and be ready for a significant training exercise. The
> more the trainee knows about X.509, the greater challenge for the
> trainer. 

It has been decisively and repeatedly demonstrated that X.509 leads to a 
completely unusable client side interface.

I assume that was your point.

More information about the cryptography mailing list