pillilz - Slashdot User

Submission + - SSL Certificates for Intranet Sites? 2

Submitted by wiedzmin on Monday November 22, 2010 @09:43PM

wiedzmin writes: Anybody who has worked with or around anything dubbed as an "appliance" in the past 5 years, knows that they now usually come with a management web-interface, and that the web-interface is usually "secure". However, no company in their right mind (accounting mind that is) will spend $400/year per appliance to buy Verisign SSL certificates to secure web-interfaces on networks that may not even have Internet access at the time. So network administrators, and sometimes end-users, are stuck clicking away at the annoying "Continue to this website (not recommended)" messages every time they connect, setting an unhealthy precedence when it comes to the actual security of SSL and the much-hyped-about MITM attacks. So the question I have for the /. crowd is — do you have valid SSL certificates on your intranet sites and if so — what do you use? Any cost-neutral, or at least cost-conscious solutions out there that don't involve manually distributing your certificates and CRL to every workstation in the company? Thanks.

Submission + - Intel Launches Atom CPU With Integrated FPGA (thinq.co.uk)

Submitted by Anonymous Coward on Monday November 22, 2010 @03:30PM

An anonymous reader writes: Intel is quite clearly serious about offering competition to ARM in the embedded market, and has just announced a new Atom processor series that offers a unique selling point: an integral FPGA processor.
Billed as 'the first configurable Intel Atom-based processor,' the Atom E600C series combines an Intel Atom 'Tunnel Creek' chip with an Altera Field Programmable Gate Array — offering, the company claims, significantly more flexibility for ODMs and OEMs.

Comment Re:German passport - protection against tracing (Score 1) 281

by pillilz on Saturday November 05, 2005 @08:58AM (#13957086) Attached to: Fatal Flaw Weakens RFID Passports

"The problem is the RFID serial number used for collisions will not be encrypted as is required for communication, thus still allowing tracking."

In a CAST Forum presentation http://www.cast-forum.de/events/cast/2005/Biometri e/ earlier this year the BSI (http://www.bsi.de/ Germany National Security Agency) claimed that German passports are protected against tracing, because they generate their serial number randomly, each time they get powered on via microwaves.

The idea of using something printed in the passport to protect the access to the RF chip is called basic access control and is regarded as moderately secure by BSI (who claim that this protection is a European/German - don't remember exactly - idea). Even this basic protection is optional by ICAO standards and not implemented by many countries.

A a more advanced PKI based access control will be implemented by Germany in a second step (in 1-2 years, as far as I remember).

Slashdot Top Deals