apparea-4----Page:13
1 2 3 4 5 6 7 8 9 10 11 12 13
|
Recommendations Don’t rely on challenge-response Hardly better than clear-text password! Identify the server Prevent man-in-the-middle attacks Beware of PKI tricks! Encrypt the session Protect the identity exchange Prevent session hijacking Use secure framework IPSEC, SSL, secure RPC, Web Services… |