Beefy Boxes and Bandwidth Generously Provided by pair Networks
laziness, impatience, and hubris
 
PerlMonks  

Comment on

( #3333=superdoc: print w/ replies, xml ) Need Help??

SSL connections provide several ways to restrict the acceptable certificate values that are presented, although these features are not commonly used in the Wooly Wild Internet.   Connection verification should be done at a protocol level.   Man-in-the-middle attacks should be prevented thereby.   If you trust the server you’re talking to, or the client you’re listening to, then HTTPS will transfer the bytes correctly.

Another way to do it on a more general scale is to use VPN with individually-issued digital certificates.

“Trust,” however, can be a big question, because, in the case of a data file, you must trust the file not the transport.   “Even if the message is being delivered by carrier pigeon, you must be able to trust the message, not the bird.”   If you return to the message weeks or months after delivery, you must still be able to authenticate its content.   The only way to do that is with a cryptographically signed file.   Tools like gpg can do that, whether or not the message itself is encrypted.   Your entire company workflow, not just this Perl program, must support that in order for it to be meaningful.


In reply to Re: Extract digital signature from HTTPS response by sundialsvc4
in thread Extract digital signature from HTTPS response by stringZ

Title:
Use:  <p> text here (a paragraph) </p>
and:  <code> code here </code>
to format your post; it's "PerlMonks-approved HTML":



  • Posts are HTML formatted. Put <p> </p> tags around your paragraphs. Put <code> </code> tags around your code and data!
  • Read Where should I post X? if you're not absolutely sure you're posting in the right place.
  • Please read these before you post! —
  • Posts may use any of the Perl Monks Approved HTML tags:
    a, abbr, b, big, blockquote, br, caption, center, col, colgroup, dd, del, div, dl, dt, em, font, h1, h2, h3, h4, h5, h6, hr, i, ins, li, ol, p, pre, readmore, small, span, spoiler, strike, strong, sub, sup, table, tbody, td, tfoot, th, thead, tr, tt, u, ul, wbr
  • Outside of code tags, you may need to use entities for some characters:
            For:     Use:
    & &amp;
    < &lt;
    > &gt;
    [ &#91;
    ] &#93;
  • Link using PerlMonks shortcuts! What shortcuts can I use for linking?
  • See Writeup Formatting Tips and other pages linked from there for more info.
  • Log In?
    Username:
    Password:

    What's my password?
    Create A New User
    Chatterbox?
    and the web crawler heard nothing...

    How do I use this? | Other CB clients
    Other Users?
    Others about the Monastery: (11)
    As of 2014-07-22 14:07 GMT
    Sections?
    Information?
    Find Nodes?
    Leftovers?
      Voting Booth?

      My favorite superfluous repetitious redundant duplicative phrase is:









      Results (114 votes), past polls