[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[DotGNU]Token System Specs
From: |
Jeremy Petzold |
Subject: |
[DotGNU]Token System Specs |
Date: |
Wed, 18 Jul 2001 11:43:07 -0700 (PDT) |
Barry,
I read the token specs, very nice :)
one thing, does the client system have a way to verify
that it actually sent the rls like a watermark that it
had attached to the rls that returns to it when the
query happens? if not I think that it would be
important to have so that a script kiddie, doing a
portscan on Aunt Bea's computer, can't send a bogus
query for information, even if it is her lowest
security priority like favorite color, its no ones
bussiness but her's and the people she authorizes.
-Jeremy
__________________________________________________
Do You Yahoo!?
Get personalized email addresses from Yahoo! Mail
http://personal.mail.yahoo.com/
- [DotGNU]Token System Specs,
Jeremy Petzold <=