Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Web-App-Sec
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

key storage

from [Ajay] Network Security [Permanent Link]
Subject: key storage
Date: Wed, 25 Aug 2004 21:02:12 +1000 
hi!

i am building a web application. for client authentication, i am using
cookies which include the HMAC of the data.
the server also has a public/private key pair for signing and verifying
information.
my question is how should these be stored on the server? encryption is the
best solution, but if i encrypt them with another key, the question is
where does this key get stored?

in an earlier java app i used the keystore class. but i am working in
python now

thanks

cheers
ajay





----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: query: switching b/n secure and non-secure mode, Andrew Sledge
Next by Date:  searching any possible pre and postfixes for a given domain, Mads Rasmussen
Previous by Thread:  RE: Finally - Curphey award 2004 to SPI Dynamics, Sebastien Deleersnyder
Next by Thread:  RE: key storage, jatkinson
Indexes:  [Date] [Thread] [Top] [All Lists]