Changeset 240


Ignore:
Timestamp:
Feb 20, 2007 10:20:18 AM (6 years ago)
Author:
dkg
Message:

TLS article: touching up some changes.

Location:
trunk/tls-centralization
Files:
1 added
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/tls-centralization/index.html

    r239 r240  
    115115 
    116116<p>This is a good thing, but some questions are still unanswered.  If 
    117 i'm using <ter>HTTPS</term>, I can be reasonably sure that the only 
     117i'm using <term>HTTPS</term>, I can be reasonably sure that the only 
    118118parties who can decipher the communication are:<ul><li>myself <li>the 
    119119web server</ul> But who is the web server really? 
     
    194194<h3>TLS</h3> 
    195195 
    196 <term>HTTPS</term> is, at its root, <term>HTTP</term> (the common 
     196<p><term>HTTPS</term> is, at its root, <term>HTTP</term> (the common 
    197197protocol by which web browsers talk to web servers) tunneled through 
    198198<a href="http://www.ietf.org/rfc/rfc4346.txt"><term>Transport Layer 
     
    527527by many programs. 
    528528 
    529 <p>At least one library exists which can use OpenPGP certificates: the 
    530 free <a href="http://www.gnu.org/software/gnutls/">GnuTLS library</a> 
    531 has supported <term>OpenPGP</term> certificates in addition to 
    532 <term>X.509</term> certificates since at least the end of 2003.  Tools 
    533 (like web browsers) which use the GnuTLS library basically can get 
    534 this extra feature without any extra work. 
     529<p>At least one TLS library exists which can use OpenPGP certificates: 
     530the free <a href="http://www.gnu.org/software/gnutls/">GnuTLS 
     531library</a> has supported <term>OpenPGP</term> certificates in 
     532addition to <term>X.509</term> certificates since at least the end of 
     5332003.  Tools (like web browsers) which use the GnuTLS library 
     534basically can get this extra feature without any extra work. 
    535535 
    536536<p>However, the <a href="http://openssl.org/">OpenSSL library</a> is 
     
    539539href="http://www.mail-archive.com/openssl-dev@openssl.org/msg21728.html">are 
    540540discussing adding OpenPGP support for OpenSSL</a>, but it's doubtful 
    541 that anything will happen in the near future.  Tools which 
     541that anything will be ready in the near future.  Tools which 
    542542use OpenSSL are going to take a while to migrate to this new 
    543543architecture. 
     
    656656<hr> 
    657657<address></address> 
    658 <!-- hhmts start -->Last modified: Mon Feb 19 23:05:33 EST 2007 <!-- hhmts end --> 
     658<!-- hhmts start -->Last modified: Tue Feb 20 10:13:41 EST 2007 <!-- hhmts end --> 
    659659</body> </html> 
Note: See TracChangeset for help on using the changeset viewer.