SSL / TLS

• Designed to be added to all sorts of things

• For example, “STARTTLS” in SMTP, IMAP

• Still takes a performance hit for initial setup, because of Public-key operations

• User certificates are rarely used -- failure of PKI

• But this is the right model: add the security straight into the application

Previous slide

Next slide

Back to first slide

View graphic version