Re: Re: Utimaco Safeguard Easy vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Re: Utimaco Safeguard Easy vulnerability
From: joachim.schneider@xxxxxxxxxx
Date: 18 Jan 2008 19:07:41 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

SafeGuard Enterprise is too different from SafeGuard Easy that any observations 
on SGE could be applied to it.

While SafeGuard Easy was explicitly designed to be as undemanding as possible 
in terms of infrastructure and had no real central management,
SG Enterprise uses a Client/Server model with central management and database, 
allowing administrators to centrally
control all policies and key management.

The only things needed to install a client is the client software package, and 
a digitally signed configuration package that identifies the client's home 
server and its certificate.
All policies, keys, etc are transported to clients using session-key encrypted 
network connections. In addition, critical data is digitally signed using 
company-specific keys.

Prev by Date: MyBB 1.2.11 Multiple XSRF Vulnerabilities
Next by Date: RE: Country by Country ISA Computer Sets
Previous by thread: Re: Utimaco Safeguard Easy vulnerability
Next by thread: Bloq 0.5.4 Remote File İnclude
Index(es):
- Date
- Thread