Closed Bug 9057 Opened 25 years ago Closed 24 years ago

Multiple client certificate requests for single session

Categories

(Core Graveyard :: Security: UI, defect, P3)

1.0 Branch
PowerPC
Mac System 8.5
defect

Tracking

(Not tracked)

VERIFIED INVALID

People

(Reporter: Murray.Bathgate, Assigned: ddrinan0264)

Details

When accessing a web site that requires client digital certificate
authentication (X509v3) . On the Mac , Netscape re-requests the user to select
user digital certificate on every secure page entry . Accessing the same site
from the same version of netscape running on Intel correctly only request the
user to select certificate on secure session creation .
Web site is IIS on NT4Sp4 .
Under SSL there is a re-use function , thus when accesing a site within the
same domian a tcp/ip session should be re-used and thus the key pairs in use
etc do not have to be regenerated .  On the MAC netscape version it seems that
session re-use is not supported .
When accessing such a site (which will become more common with E-commerce) it
is extremely annoying to have a certificate dialog presented on every page post
.
Our site uses both client and server digital certificates . Microsoft server
gated crypto to provide site authentication and 128bit encryption . Client
digital certificates for non-repudiation and client authentication .
Murray, what version of Communicator are you using?  This sounds like a 4.x bug.
 Bugzilla is for 5.0 bugs only.  Please let us know so we can help.
Assignee: tomw → mwelch
tomw doesn't live here any more. assigning bugs to mwelch
who is the new default owner of security bugs
Status: NEW → ASSIGNED
Accepting bug for QA/tracking.
Bulk moving all Browser Security bugs to new Security: General component.  The 
previous Security component for Browser will be deleted.
Component: Security → Security: General
Changing Qa contact to myself.
QA Contact: dshea → junruh
Whiteboard: [from mwelch@netscape.com]
I'm leaving Netscape, so I'm reassigning all my pending bugs to David Drinan.
I've added "[from mwelch@netscape.com]" to the status whiteboard for each of
these bugs for easier searching.
Assignee: mwelch → ddrinan
Status: ASSIGNED → NEW
Changing component
Component: Security: General → Security: Crypto
Target Milestone: --- → M17
Murray, can you point me to site where this can be tested?
Whiteboard: [from mwelch@netscape.com]
Marking invalid. There is no testcase, and more than a year since hearing from 
Murray.
Status: NEW → RESOLVED
Closed: 24 years ago
Resolution: --- → INVALID
Verified.
Status: RESOLVED → VERIFIED
Mass changing Security:Crypto to PSM
Component: Security: Crypto → Client Library
Product: Browser → PSM
Target Milestone: M17 → ---
Version: other → 2.1
Mass changing Security:Crypto to PSM
Product: PSM → Core
Version: psm2.1 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.