[Standards-JIG] RE: Encrypted sessions

Jesus Cea jcea at argo.es
Tue Jul 18 19:44:00 UTC 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Jean-Louis Seguineau wrote:
> Coming back to securing "offline" data, what I just said does not address
> the issue. But from a security perspective, it is more secure NOT to store
> encrypted "offline" data than to store it.

How do you know that a user is offline?. Think about "lag", client
connection timeout, S2S conectivity issues, etc.

- --
Jesus Cea Avion                         _/_/      _/_/_/        _/_/_/
jcea at argo.es http://www.argo.es/~jcea/ _/_/    _/_/  _/_/    _/_/  _/_/
jabber / xmpp:jcea at jabber.org         _/_/    _/_/          _/_/_/_/_/
                               _/_/  _/_/    _/_/          _/_/  _/_/
"Things are not so easy"      _/_/  _/_/    _/_/  _/_/    _/_/  _/_/
"My name is Dump, Core Dump"   _/_/_/        _/_/_/      _/_/  _/_/
"El amor es poner tu felicidad en la felicidad de otro" - Leibniz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQCVAwUBRL06AJlgi5GaxT1NAQKKHAP/c7uyHFEy8ibxazSLXJYX3TmWfFZ5LvRU
5FWUSXsqUiPnY40rpDdttes82HNMEoQmLPGNVSRdjpTv9ypbaHJWd9OR+F8OiHdn
MBgFS46L+agDf93BU7xlejIxGwfHVLKvqYz8JF4OhoYzV8j7k8kwnWL68jTxyYnI
4TaUnhoF/OI=
=LIky
-----END PGP SIGNATURE-----



More information about the Standards mailing list