News

InfoWorld24y
Build secure network applications with SSL and the JSSE API
It includes an implementation of SSL 3.0 — the current SSL standard — and TLS (Transport Layer Security) 1.0, the next generation of SSL. JSSE also provides a suite of APIs for creating and ...
Network World16y
SSLVPN Vulnerabilities – Client Certificates offer a superior defense over OTP devices - Network World
So as you can see putting a certificate on the client side stops the attacker dead. With client-certificates in play, the SSL negotiation is based on the public/private key pair of both the client ...
Linux Journal23y
An Introduction to OpenSSL Programming, Part I of II
The first step in an SSL connection is to perform the SSL handshake. The handshake authenticates the server (and optionally the client) and establishes the keying material that will be used to protect ...
Ars Technica15y
How can I force IIS to send back the whole certificate chain during SSL handshake. | Ars OpenForum
I don't believe you can. It would kind of defeat the purposes SSL if the web server always pushed you what "it" thought were good trustworthy CAs and your devices just said "oh ok if you say so!".