|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: David Howe (DaveHowe.Pentest
googlemail.com)
Date: Mon Oct 06 2008 - 03:42:09 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Jay D. Dyson wrote:
> On Mon, 6 Oct 2008, brendan wrote:
>
>>> First off, let's see the URL.
>> at a guess,
>> http://certcities.com/editorial/columns/story.asp?EditorialsID=176&page=9
>
> Thanks for the URL. After reading that piece, I'm left with the distinct
> impression that the author clearly has some fundamental things
> bass-ackwards. This impression is borne out in the author's statement
> that he was expecting the exam to "broaden [his] security knowledge."
Well, the comment by Anonymous 1/26/07 sounds more reasonable - that
the people setting the exam didn't have fundamental knowledge, but were
just harvesting question sets from the recommended books - the example
given is that s/mime is asymmetric. it isn't, like pgp and practically
every other player in that space, it is a symmetrically encrypted system
with a randomly generated key, said key asymmetrically encapsulated to
the public key of one or more recipients.
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides
www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]