Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [milo-dev] [iot-pmc] Release review for Eclipse Milo 0.1.0
I could set the server up with a CertificateValidator that doesn't actually check to see if the client certificate has been trusted, but at that point all we're demoing is security equivalent to TLS. 

I suppose it's better than nothing though *shrug*

On Fri, Oct 28, 2016 at 8:51 AM, Benjamin Cabé <benjamin@xxxxxxxxxxx> wrote:
Ya I was thinking along the lines of just having authentication of the server in place, by means of using the public key of said server. I know close to nothing about OPC-UA, but I would assume that we don’t *have* to enable authentication of the clients by the server as well, or do we?

Benjamin –

________

Benjamin Cabé

Eclipse Foundation
+33 (0) 619196101
@kartben

Le 28 oct. 2016 à 11:37, Lothar Kimmeringer <job@xxxxxxxxxxxxxx> a écrit :

Hi,

Am 27.10.2016 um 17:46 schrieb Kevin Herron:
Security will be tough unless someone wants to build some kind of certificate management web interface.

since it's a demo server you can also just provide p12-files containing a certificate and
its private key for download that are configured on the demo server for authentication.


Cheers, Lothar
_______________________________________________
milo-dev mailing list
milo-dev@xxxxxxxxxxx
To change your delivery options, retrieve your password, or unsubscribe from this list, visit
https://dev.eclipse.org/mailman/listinfo/milo-dev


_______________________________________________
milo-dev mailing list
milo-dev@xxxxxxxxxxx
To change your delivery options, retrieve your password, or unsubscribe from this list, visit
https://dev.eclipse.org/mailman/listinfo/milo-dev


Back to the top