[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Cross-platform authentication

Subject: Re: Cross-platform authentication
From: Michael Hall <email@hidden>
Date: Mon, 17 Jul 2006 15:22:09 -0500
Delivered-to: email@hidden
Delivered-to: email@hidden


On Jul 17, 2006, at 2:33 PM, Greg Guerin wrote:

Michael Hall wrote:

For my application I was hoping for something more secure but I can
adapt what I have and it should work. KeyStore access usually unless
you intentionally simplify it allows for both a password for the file
and each alias. So while I would hope for something more secure than
default this actually weakens it. Oh well.

I don't see how using a KeyStore would necessarily weaken anything.

Not using a keystore. You can have a strong crypto password. But to simplify it to a single password is less secure than a file password + a unique password per alias. More all your eggs in one basket. Figure out the one password and you have the works. It could be a lame single password, easily susceptible to dictionary attack, then the strong crypto doesn't necessarily matter, etc.


Mike Hall        mikehall at spacestar dot net
http://www.spacestar.net/users/mikehall
http://sourceforge.net/projects/macnative

Attachment: smime.p7s
Description: S/MIME cryptographic signature

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Java-dev mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/java-dev/email@hidden

This email sent to email@hidden

References:
	>Re: Cross-platform authentication (From: Greg Guerin <email@hidden>)

Prev by Date: Re: Cross-platform authentication
Next by Date: Re: Java Performance in MAC OS X
Previous by thread: Re: Cross-platform authentication
Next by thread: Re: Cross-platform authentication
Index(es):
- Date
- Thread

Home