[Security] TLS Certificates Verification

Dirk Meyer dmeyer at tzi.de
Wed Aug 20 12:57:48 CDT 2008


Jonathan Schleifer wrote:
> Dave Cridland <dave at cridland.net> wrote:
>> It's certainly true that on old hardware, or mobile handsets,  
>> generating an RSA key will take a while, albeit it typically not an  
>> hour. But we can also arrange for standard methods for transferring  
>> the private key to other devices, and for actual devices (in the  
>> sense that Dirk Meyer wants to deal with) the key can be
>> pregenerated by the hardware manufacturer, like is done with the
>> iPhone.
>
> I wouldn't trust the manufacturer for that. I really wouldn't.

So you upload your own key if the box supports that. If it does not,
do not buy the box. Most people will trust the vendor. Or the box will
take 10 minutes on first startup, so what.


Dirk

-- 
"I wonder what those flashing red lights mean?"


More information about the Security mailing list