Shen: A Security Scheme for the World Wide Web
Work in progress
To be done list:
- Password scheme using an encrypted password that is decrypted at
the receiver end and tested against the standard password file.
- The current system does not perform a cryptographically secure hash
of the message body content as it should.
- No provision is made for sending files which are stored in
encrypted format.
- The protocol announces itself as 1.0 and not 1.1 as it should.
- The replacement password scheme using the native password file and
Diffie Helleman has not been even mentioned.
- The date and time are not within the context of the message digest.
- No certificate system under http yet.
- Need the HTML mods.
Phillip M. Hallam-Baker CERN Programming Techniques Group
hallam@alws.cern.ch Version 1.0R1