Re: Encryption



"Demetri" <Demetri@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:84C2459E-F39E-45AD-9726-3DD0067E4F6C@xxxxxxxxxxxxxxxx

It would seem to me that the data must remain encrypted all the way to the
client and then decrypted via javascript so that the data is never in its
true form through a wire.

This is without doubt the worst possible thing you could do in this
situation - JavaScript is client-side, so the entire decryption routine /
algorithm would need to be downloaded to the client machine, where it would
run.

UNDER NO CIRCUMSTANCES DO THIS!!!

But then the question becomes how does one leverage

AAARRRGGGHHH!!! The *L* word...

If anyone can shed some light on this please do.

Extremely simple - get an SSL certificate from a known and trusted
certification authority.


.