[Security] TLS Certificates Verification

Dirk Meyer dmeyer at tzi.de
Tue Aug 19 12:26:32 CDT 2008

Greg Hudson wrote:
> On Tue, 2008-08-19 at 18:50 +0200, Dirk Meyer wrote:
>> Use case: I want to connect my media network using XMPP. I have a
>> set-top box (bot) and a mobile phone I want to use to control the
>> set-top box. Should I use a CA? Not a good idea.
> I'm not sure what kind of solution you're looking for here.  What
> distinguishes your mobile phone from someone else's?  You probably can't
> have strong authentication with zero configuration and zero human
> support.

Sure, I need some sort of human configuration. But if I can configure
both devices as "mine" they can interact.


Disclaimer: the above is the author's personal opinion and is not the
opinion or policy of his employer or of the little green men that have
been following him all day.

More information about the Security mailing list