requirement013.tex
来自「FREESWAN VPN源代码包」· TEX 代码 · 共 44 行
TEX
44 行
\subsection{013: process to process tunnels}\subsubsection{013: Definition of requirement }The idea here goes something like this: User IDs are a clumsy form of identification and authentication. Modern systems do much better. For instance, using ssh, one can have one window (one process group) forwhich one has started an ssh-agent which holds one's certificates. One can have another window logged in under the same user ID, but withdifferent certificates, or indeed no certificates at all. This is the modern approach: security resides in the keys, not in the user IDs.User IDs have a clear meaning locally.They have only a weak relationship on relationship to entities on a distantsystem.Certificates do have meaning as anyone with a public key in a trusted storewith clear authorizations attached can trust some entity that has the corresponding private key.\subsubsection{013: response}During the definition stage of "granularity finer than per-host", (such asin requirement \#11) it will be necessary to clearly articulate what theappropriate size of a "grain" will be.No specific programming work is committed to for satisfaction of thisrequirement, rather a step in the process for definition of requirement \#11has been made.
⌨️ 快捷键说明
复制代码Ctrl + C
搜索代码Ctrl + F
全屏模式F11
增大字号Ctrl + =
减小字号Ctrl + -
显示快捷键?