Add SSL certificate authentication support
Description (last modified by damato)
Currently, SSL certificates through SSL connections aren't verified. This may be considered a security flaw as it allows to initiate man-in-the-middle attacks due to unverified certificates. However, data on the way is still be encrypted and secured between the connection partner.
But for a real secure SSL implementation/use, YAM should highly consider providing functionality to carry common root certificates and to always verify that the certificate of the connection partner is valid and matches the host the user wants to connect. However, this requires to introduce a certification management GUI and to allow users to install their own certificates. Quite a straight forward task where AmiSSL already allows to do the certification verification automatically.
Change History (4)
comment:2 Changed 5 years ago by damato
Note: See TracTickets for help on using tickets.
This list contains all users that will be notified about changes made to this ticket.
These roles will be notified: Reporter, Owner, Subscriber