Version 1.1
For reasons of maintaining better security, a new authentication model was devised. The main security threat is seen to be the system of sending certificates to the server. A compromised server could allow an attacker to intercept private keys. A compromise solution is presented here, which will hopefully both improve security and still accomodate a reasonably user friendly mechanism.
User interface
Request certificate signature
Your certificate now has to be signed by a valid certificate authority. The certificate will be sent to a certificate authority which will verify you as a member of the organization you stated.
Choose the authority closest to you to send a request for signing.
first name:
John
last name:
Doe
email address:
john.doe@ntnu.no
organization:
ntnu.no
username:
jdoe
password:
*****
certificate authority:
additional information:
Design
The certificate signiture request form is not changed from v1.0 but it is now contained within the client application.