NSS is FIPS 140-2 level 2 validated
Bob Lord reports that NSS (Network Security Services), the crypto library that powers software such as Firefox, Thunderbird, Open Office, and Fedora directory server, has recently been FIPS 140-2 level 2 validated by NIST. This is an important milestone because NSS is the only open source crypto library that is validated to level 2 (the...
Free as in beer
There is a new project on the block: freeIPA. This is an effort to shore up the existing identity infrastructure such as kerberos, LDAP, Samba and RADIUS. and make it all work together out of the box. For version 1 we’ll be concentrating on the I for identity and in later versions we’ll be adding...
Secure OpenID
I’ve been waiting for the first OpenID provider to offer a certificate based, no password ever, service. Not an SSL service, a certficate authentication based service. That is, a service that simply puts a certificate in your database and uses that to authenticate you. Browsers are well versed in the art of the certificate these...
Serial numbers and MMR
I haven’t blogged in a while, and the reason for that is really quite simple: when it comes to blogs, code comes first. Actually, that is probably better written as: when it comes to %x, code comes first.
A while ago I wrote about some of the issues that some people have with multi-master replication in...
The new new year, it’s all virtual
Jim Yang of Identyx has recently been busy cooking up a little virtual directory coolness for Fedora directory server. That is Penrose is now integrated with FDS. Now that is what I call an Xmas present.
Internet Identity Workshop (IIW) 2006B
The Internet Identity Workshop (IIW) 2006B is next week, don’t forget to sign up. There should be some good identity selector demos in addition to the many interesting discussions. Oh, and coffee.
See you there.
(Fire)walls have ears
Like to chat online? Of course you do. Like third parties snooping in on your conversations? Of course you don’t. Unfortunately that is the reality today, there is no lack of IM sniffers out there and that makes your conversations vulnerable to capture even to the unsophisticated. Beyond employers spying on employees, any sensitive company...
