Secure Channel Binding
6 views
Skip to first unread message
fcorneli
May 29, 2009, 11:50:27 AM5/29/09
to eID Applet
Hi,
I've implemented a new secure channel binding as part of the eID
Applet authentication operation to prevent a certain type of man-in-
the-middle attack. This feature offers end-point cryptographic channel
binding using the TLS server certificate. You can activated this
feature on the eID Applet Service via:
<init-param>
<param-name>ChannelBindingServerCertificate</param-name>
<param-value>/path/to/your/server/certificate.der</param-
value>
</init-param>
It is strongly advised to upgrade to the latest eID Applet (trunk
source code version) for maximum security.
Kind Regards,
Frank.
I've implemented a new secure channel binding as part of the eID
Applet authentication operation to prevent a certain type of man-in-
the-middle attack. This feature offers end-point cryptographic channel
binding using the TLS server certificate. You can activated this
feature on the eID Applet Service via:
<init-param>
<param-name>ChannelBindingServerCertificate</param-name>
<param-value>/path/to/your/server/certificate.der</param-
value>
</init-param>
It is strongly advised to upgrade to the latest eID Applet (trunk
source code version) for maximum security.
Kind Regards,
Frank.
Reply all
Reply to author
Forward
0 new messages