Results 1 to 10 of 10

Thread: Anyone know of a website which implements AES?

  1. #1
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default Anyone know of a website which implements AES?

    I'm looking for a few websites which implement AES for their session encryption via HTTPS (SSLv3 or TLS), does anyone know of any?

  2. #2
    Member imported_blackfoot's Avatar
    Join Date
    Jun 2007
    Posts
    386

    Default interesting

    That's a really interesting question and I considered it for half-an-hour.

    I cannot say I have a way of finding out. certainly most should have now enabled use because we were discussing adoption back in 2000 but as to find out which ones I don't know...apart from the obvious setting up an Apache box. All the new browsers should have it enabled.

    I will think about it over the weekend. Apologies for not being able to point in the right direction yet, though I pretty much guess your resources are the same as mine.
    Lux sit

  3. #3
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default

    I'm pretty sure you used to be able to tell in Firefox if you hovered over or double clicked the little Lock icon in the status bar.

    Edit: Found one, ThinkGeek uses AES-256

    Hmmm the forums resized it to height=280 so it's hard to read, if you zoom you'll be able to see.

  4. #4
    Member imported_blackfoot's Avatar
    Join Date
    Jun 2007
    Posts
    386

    Default oh yes

    Oh well done.

    That is interesting...so...next step? Can I help?
    Lux sit

  5. #5
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default

    I'm just hunting for a few more.

    The reasoning is pretty un-exciting (SORRY!) I'm just trying to gather some amunition for an argument/debate with collegues that I know is going to happen next week

  6. #6
    Member imported_blackfoot's Avatar
    Join Date
    Jun 2007
    Posts
    386

    Default ok

    Excitement is not a priority.

    I will look over the weekend.

    The ones I considered so far all stick with original certificates either RSA or DSA

    Regards
    C
    Lux sit

  7. #7
    Member elazar's Avatar
    Join Date
    Sep 2007
    Posts
    217

    Default

    ASP.NET(specifically version 2) supports AES for state management(viewstate), though it would be impossible to tell by looking at the page, you would need to see the web.config of the site in question. See http://msdn2.microsoft.com/en-us/library/ms998288.aspx

    E

  8. #8
    Jenkem Addict imported_wyze's Avatar
    Join Date
    Jul 2007
    Posts
    1,543

    Default

    I've implemented it on my personal webserver... pretty e-z to do:

    openssl genrsa -aes256 -out server.key 2048
    openssl req -new -key server.key -out server.csr
    openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
    cp server.key server.key.secure
    openssl rsa -in server.key.secure -out server.key
    chmod 400 server.csr
    chmod 400 server.crt
    chmod 400 server.key
    chmod 400 server.key.secure

    The mv them into the proper apache/httpd directories
    dd if=/dev/swc666 of=/dev/wyze

  9. #9
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default

    Thanks swc666
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  10. #10
    Jenkem Addict imported_wyze's Avatar
    Join Date
    Jul 2007
    Posts
    1,543

    Default

    Quote Originally Posted by thorin View Post
    Thanks swc666
    Any time thorin: my brain is Open Source
    dd if=/dev/swc666 of=/dev/wyze

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •