The errata list is a list of errors and their corrections that were found after the product was released.
The following errata were submitted by our customers and have not yet been approved or disproved by the author or editor. They solely represent the opinion of the customer.
Color Key: Serious technical mistake Minor technical mistake Language or formatting error Typo Question Note Update
| Version |
Location |
Description |
Submitted by |
Date submitted |
| Printed |
Page 22
4th paragraph |
The description of the method that a web server uses to decrypt a session key reads
"The server uses its public key to decrypt the session key, providing a shared
key...". I believe the server uses its PRIVATE key to decrypt the session key
because
1) If the session key is initally encrypted with the server's PUBLIC key (earlier in
the paragraph) than only the server's PRIVATE key can be used to decrypt the session
key.
2) The author later says on the same page (next paragraph) "because only the
intended server possesses the private key necessary to decrypt that inital session
key". So the author's understanding of public key cryptology is correct but his
earlier description of it is not.
|
Anonymous |
|
| Printed |
Page 137
7.2.2.1.2 fig 7-9 |
figure 7-9 #2
The copy of server A ticket encripted by serverA's private key should contain a server A session key not a TGT session key.
|
Anonymous |
|