[5413] in cryptography@c2.net mail archive
RE: going around the crypto
daemon@ATHENA.MIT.EDU (Peter Gutmann)
Sat Aug 14 18:07:47 1999
Date: Sun, 15 Aug 1999 08:11:29 +1200 (NZST)
From: pgut001@cs.auckland.ac.nz (Peter Gutmann)
To: cryptography@c2.net
Alan Ramsbottom <ACR@als.co.uk> writes:
>IE5 gives you one or more warnings (unknown CA, invalid cert date, URL-CN
>mismatch) and asks if you want to proceed.
>
>It can also check CRLs, but the feature is disabled by default (doubtless on
>standards/compatibility grounds).
Performance grounds. Most people don't want their app grinding to a halt for
several minutes while it gropes around for CRL's every time it runs into a
cert.
Peter.
