On Thu, 4 Jul 1996, Gary Howland wrote:
Black Unicorn wrote:
A. Methods to run secure websites on insecure servers.
[...]
I fully agree with all of your comments, but, encrypted proxying issues aside, what is wrong with SSL? Is it because the encryption is for the whole server, not individual users?
It provides no protection to the individual who must run on a server he does not have in a secure location with TEMPEST specs.
Is anyone considering work on these?
With regard to the local decryption idea, then I don't see this as much of a problem. How much interest is there in this? We already have something similar running, but it would still need a bit of work to make more general.
What do you have running exactly?
Gary -- pub 1024/C001D00D 1996/01/22 Gary Howland <gary@systemics.com> Key fingerprint = 0C FB 60 61 4D 3B 24 7D 1C 89 1D BE 1F EE 09 06