[apple/security.git] / SecureTransport / README

                     SecureTransport notes\r                       8 Nov 1999 dmitch\r                       \rCurrent status of this project:\r\rNote "Version" refers to SSL2 vs. SSL3. "Mode" refers to client vs. server.\r\r-- All modes require domestic CSP. \r\r-- Both modes require post-Sonata CSP mods which allow \r   specification of raw symmetric key bits. These CSP changes \r   have been checked in prior to 8 Nov 1999.\r\r-- Server mode requires post-Sonata CSP mods which allow \r   asymmetric keys to have multiple KeyUsage flags set - \r   specifically, private keys must be able to sign and \r   decrypt; public keys must be able to verify and encrypt.\r   These CSP changes have NOT been checked in as of 8 Nov 1999;\r   final implementation pending input from A. Perez. \r\r-- Client mode works in both versions, both domestic and export. \r\r-- Server mode works with Netscape client 4.6.1 on Mac. \r   Operation with IE on Mac is flaky - sometimes it works,\r   sometimes not. Server untested with Windows clients. \r\r-- Client authentication is not tested. \r\r-- No support for session resumption. This needs a thread-safe\r   database, to be implemented in appleSession.c.\r\r