>> a) How does a web browser (say Netscape) that does not want to concern the >> user with cryptographic details manage an RSA private key for the initiation >> of an SSL session? I'm specifically interested in knowing whether it >> creates a key once and stores it on the disk, if it creates a key at startup >> and stores it for the lifetime of the process, or if it creates a key for >> each session.
> The web browser doesn't need a private key in order to connect to servers > unless it's doing client authentication. Hmm... Looks like it's time to read chapter 3 again ;) Thanks Eric! Great book by the way. Brian ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
