[533] in WWW Security List Archive
Re: SSL and Security issues in General
daemon@ATHENA.MIT.EDU (Phillip M. Hallam-Baker)
Fri Mar 24 11:49:03 1995
To: "John Hemming (Chief Executive MarketNet )" <JohnHemming@mkn.co.uk>,
www-security@ns2.rutgers.edu
cc: hallam@dxal18.cern.ch
In-reply-to: Your message of "Fri, 24 Mar 1995 10:49:03."
<199503241052.FAA07736@ns2.rutgers.edu>
Date: Fri, 24 Mar 1995 14:01:40 +0900
From: "Phillip M. Hallam-Baker" <hallam@dxal18.cern.ch>
Errors-To: owner-www-security@ns2.rutgers.edu
Its hardly suprising that SSL is not sufficient for online payments. S-HTTP
is not sufficient either. To make a scheme suitable for that type of application
it is necessary for third parties to be involved, such as in countersigning of
orders etc.
Phill H-B