> > I have the following scenario - > > > > Client Cert -- Tunnel Server - Tunnel Client -- Backend server. > > > > The requirement is to pass the Client Cert to the Backend server.
> If you could do that then anyone who had access to a certificate > (for example the recipent of signed email) could impersonate the sender or You may want to look at how Globus deals with a similar problem for grids; see: http://www-fp.globus.org/security/ and http://www.ietf.org/internet-drafts/draft-ietf-pkix-proxy-03.txt ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
