[cryptography] Client TLS Certificates - why not?

Guido Witmond guido at witmond.nl
Mon Mar 4 17:22:24 EST 2013


On 03/04/2013 11:15 PM, Open eSignForms wrote:
> Step 10 will make it impossible for you mom. ;-)
>
>
>
>     10. You write your message, sign it with your private key, encrypt
>     it with your public key and deliver the ciphertext to
>     https://guidos-secure-mail.com/deliver?to=StealthMongersMom&ciphertext=MIIABC...XZY===
>     <https://guidos-secure-mail.com/deliver?to=StealthMongersMom&ciphertext=MIIABC...XZY===>
>     (openssl s/mime encoded message, without headers)
>
>

You're right. Wrong key for encryption. Should use mom's public key for 
encryption.

Thanks, Guido.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.randombit.net/pipermail/cryptography/attachments/20130304/02be9871/attachment.html>


More information about the cryptography mailing list