From: Farrukh N. <far...@su...> - 2002-10-24 17:55:49
|
Derrick's email earlier about security prompted me to look into a dormant idea of using CREN as a free Certificate Authority (CA) service. Did I mention this is *FREE*! Get digital certificates backed by a CA for non-production use at: http://ca.cren.net/ The process is pretty straight forward. This would be useful when we change registry server code to enforce that only certificates from certain trusted CA are accepted by the server. I envision that we would put the CERN CA as a trusted CA in the default configuration when the issue is addressed. We will publish more detailed instructions later but you may wish to get setup with your own certificate imported into your favorite browser. We can then provide tools to import your certificates from PKCS12 files into the client keystore. -- Regards, Farrukh |