Board index Unix Web Servers

128-bit encryption using 40-bit browsers?

128-bit encryption using 40-bit browsers?

Post by mi_5 » Tue, 25 Apr 2000 04:00:00



Hi, folks, someone just told me that both Netscape and Microsoft have
already embeded 128-bit technology in their 40-bit browsers, so we can
force the transmission of data using 128-bit encryption on the
server side even when the customers are using 40-bit browsers, can
anybody confirm to us if this is true or not? Thanks a lot in advance.

Simon

Sent via Deja.com http://www.deja.com/
Before you buy.

 
 
 
Top

128-bit encryption using 40-bit browsers?

Post by Paul Rub » Wed, 26 Apr 2000 04:00:00



>Hi, folks, someone just told me that both Netscape and Microsoft have
>already embeded 128-bit technology in their 40-bit browsers, so we can
>force the transmission of data using 128-bit encryption on the
>server side even when the customers are using 40-bit browsers, can
>anybody confirm to us if this is true or not? Thanks a lot in advance.

You're thinking of Server-Gated Cryptography (SGC).  It's present in
all Netscape and IE 4.x and later browsers, and in IE 3.02 if you
install a service pack.  To turn it on, you need a special server
certificate (Verisign Global ID) which costs a lot more than a regular
certificate and is subject to cryptographic export regulations.
It's kind of an annoying handout on the government's part, but it's
the simplest way to provide high strength encryption on a web site.

See www.verisign.com (click the "free guide to 128 bit SSL") link
for more info.

 
 
 
Top

1. 128-bit SSL for 40-bit clients

Both Verisign and Thawte supply certificates which enable 128-bit SSL
for international (40-bit) clients for the duration of that session.
These certificates are sold only to banks, etc.

Does anyone know of a way of generating these "temporary upgrading"
certificates using SSLeay? Or indeed any other freeware CA stuff? Or
even have any technical details on what's involved in unlocking
the 'strong' encryption?

Cheers in advance,

Kevin

--
I can levitate birds. Nobody cares.
      --- Steven Wright

--
I can levitate birds. Nobody cares.
      --- Steven Wright

Sent via Deja.com http://www.deja.com/
Before you buy.

2. RETRACTION: xbiff is NOT broken.

3. is it possible to detect browser encryption level for 128-bit, 56-bit and 40-bit SSL compatibility?

4. Ignorance -- What's OpenWindows?

5. Connect Linux PPP client using NTRAS's 128-bit RC4 encryption?

6. Disappearing windows in Afterstep and other things

7. Apache, Raven SSL & only 40-bit Encryption

8. convert to ASCII

9. SSL 40/128 Bit patch for Netscape 4

10. 128-bit encryption

11. ANNOUNCE: Fortify for Netscape v1.2.1; worldwide 128-bit encryption

12. SSLeay and 128-bit encryption key

13. 128-bit encryption for Konqueror or Mozilla?


All times are UTC
Board index