what happens if I want to implement secured applications and
protocols like SSL or other certificates based applications ???
I have to get a (expensive) license of the RSA patents (in the US).
Then if we look at SSLv3.0 it is possible to use DH/DSS certificates.
Certificates are signed by CA with DSS signatures and contain
Diffie Hellman keys for encryption, both are free now !
Now the question is : does anybody know if a client that implements
only these free algorithms can connect to SSL servers ?
Does Verisign or any other famous CA provides Certifictaes with something
else than RSA keys ???? Is it widely used ?
I'd like also to understand if I can implement authentication with DH keys.
It seems to me that it is possible provided that both parties use the same
and modulus for the generation of their public keys. This can be done if
Alice and Bob got their public Diffie Hellman keys from the same CA
(using a single pair of B and Mod). Then Alice and Bob can start exchanging
a temporary encryption key with their shared secret. Authentication is OK
Do you know if this is used ??
Or do I always have to DSS signed my DH certificates ?
Many thanks for your help,