[1578] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

SSL Proxy discussion

daemon@ATHENA.MIT.EDU (Adam Shostack)
Tue Sep 23 11:34:48 1997

From: Adam Shostack <adam@homeport.org>
To: cryptography@c2.net (Cryptography Mail list)
Date: Tue, 23 Sep 1997 06:18:04 -0400 (EDT)

I've been having an interesting discussion about proxies and MITM
tools on Marcus Ranum's new moderated firewall wizards mailing list.
Im hoping some of the cryptographers here could join and comment on
the feasability of adding a third party (a firewall proxy) to an SSL
connection such that the proxy can read traffic, and decide to kill
the connection, but not to modify the content silently.  (Yes, I'm
leaving a chance that the proxy could modify content, if it announces
itself as doing so.)

The archive is available on
http://www.nfr.net/firewall-wizards/mail-archive/1997/Sep/0005.html,
and the mail list is majordomo@nfr.net

Adam

-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[1578] in cryptography@c2.net mail archive

SSL Proxy discussion

daemon@ATHENA.MIT.EDU (Adam Shostack)Tue Sep 23 11:34:48 1997

daemon@ATHENA.MIT.EDU (Adam Shostack)
Tue Sep 23 11:34:48 1997