Comments on: Post-dissertation development http://www.screwlessdesign.co.uk/blog/post-dissertation-development/ project and assignment diary Tue, 06 Jan 2009 00:10:46 +0000 http://wordpress.org/?v=2.0.4 by: Stephen Lang http://www.screwlessdesign.co.uk/blog/post-dissertation-development/#comment-65 Wed, 13 Aug 2008 21:48:38 +0000 http://www.screwlessdesign.co.uk/blog/post-dissertation-development/#comment-65 Looks like the secure user login system is going to have to wait a while as I only have a shared SSL certificate at the minute, meaning I can't use cookies between domains and so my idea for secure user authentication will not work. I have read about secure AJAX login systems that utilise client-side authentication... but what about devices that do not support JavaScript? Either I have to accept that these users must transmit their login information securely or I buy a dedicated SSL certificate... Is it worth it though? I'll have to find out the price first. I would ideally prefer that the user's entire session is secure, especially given that user's may store their credentials for several different applications in their accounts... More soon. Looks like the secure user login system is going to have to wait a while as I only have a shared SSL certificate at the minute, meaning I can’t use cookies between domains and so my idea for secure user authentication will not work.

I have read about secure AJAX login systems that utilise client-side authentication… but what about devices that do not support JavaScript? Either I have to accept that these users must transmit their login information securely or I buy a dedicated SSL certificate… Is it worth it though? I’ll have to find out the price first. I would ideally prefer that the user’s entire session is secure, especially given that user’s may store their credentials for several different applications in their accounts…

More soon.

]]>