CGI/Perl Guide | Learning Center | Forums | Advertise | Login
Site Search: in

  Main Index MAIN
Search Posts SEARCH
Who's Online WHO'S
Log in LOG

Home: Need a Custom or Prewritten Perl Program?: I need a program that...:
Browser Encryption Level Detection?



Aug 31, 2000, 1:29 PM

Post #1 of 2 (1772 views)
Browser Encryption Level Detection? Can't Post

I am trying to find a script that will detect
the number of bits of encryption a browser is
using when it hits the web server. My server
requires 128 bit encryption browsers to issue
client side certificates and I need to detect
the level of encryption and recommend necessary links to upgrade before browser user gets the certificate.

Anyone know of a script that can do this or a
module I can use to write a script that will
do this? I am a fairly advanced perl programmer and am having a bear of a time finding such a script.

TIA, Dennis

require assistance;
foreach (@answer) wait;
return my $thanks;


Sep 7, 2000, 5:02 AM

Post #2 of 2 (1772 views)
Re: Browser Encryption Level Detection? [In reply to] Can't Post

Okay, I will post the answer I found to my problem here.

For those that in the future may be doing something with Digital ID's and SSL:

SSL produces several CGI Environment variables that are not listed anywhere in my
library of perl/cgi books. Among these are the two that I needed.

First, is $ENV{HTTPS_KEYSIZE}. This is the
maximum cryptographic keysize for the web
server you are sending the data to from a web page.

Second, is $ENV{HTTPS_SECRETKEYSIZE}. This is the maximum cryptographic keysize for the
client browser attempting to communicate with the server.

A simple comparison of the 'SECRETKEYSIZE' to the minimum level of encryption you want
your application to use, would be enough to create some notification to the web client that their browser did/didn't have a high enough encryption level.

Hope that helps others in the future.



Search for (options) Powered by Gossamer Forum v.1.2.0

Web Applications & Managed Hosting Powered by Gossamer Threads
Visit our Mailing List Archives