Enterprise Integration Technologies' Secure-HTTP

"S-HTTP" : EIT's proposed security extensions to HTTP

Protocol Designed to

• Allow for HTTP exchanges that are encrypted and/or signed

• Support several cryptographic mechanisms

• Negotiation of modes and options built into protocol

  Examples:

  Client requires that server's response be encrypted

  Server requires that client's request be signed

  Client supports DES, RSA .....