HTM5 Introduction to the usage and properties of the new table cell keygen label

Source: Internet
Author: User
Tags asymmetric encryption mitm attack
HTM5 new table cell keygen label usage and properties introduced, this article mainly introduces HTML5 keygen label definition usage and its properties description, as well as the advantages and disadvantages of HTML5 keygen label

HTML5 definition and usage of keygen tags:

The <keygen> tag specifies the key pair generator field used for the form.

When the form is submitted, the private key is stored locally and the public key is sent to the server.

HTML5 <keygen> Tag Examples:

A form with a keygen field:

<form action= "demo_keygen.asp" method= "Get" >username: <input type= "text" name= "Usr_name"/>Encryption: <keygen name= "Security"/><input type= "Submit"/></form>

HTML5 properties of the keygen tag:

HTML5 keygen label advantages and disadvantages of the introduction:

First the <keygen> tag generates a public and private key, the private key is stored locally on the user, and the public key is sent to the server. So what is the use of the public/private key generated by the <keygen> tag? Many friends should think of asymmetric encryption when they see the public/private key. That's right.,<keygen> tags play a role here as well.

The <keygen> tag expects the server to generate a client Certificate after receiving SPKAC (Signedpublickeyandchallenge), Then return to the browser to let the user go to download and save to Local. After that, the user authenticates by using the locally stored private key and certificate after the Tls/ssl Secure transport protocol to the server.

The following are the advantages of using <keygen> Tags:

    1. One is to improve the security of verification;

    2. At the same time, if it is used as a client certificate, it can improve the defense against MITM attack.

    3. Keygen tags are implemented across browsers and are very easy to implement.

    4. In addition, you can not consider the operating system administrator permissions issues. For example, the operating system sets different browser permissions for different users, ie or other browsers can disable the generation of keys within the settings, in which case the keygen tag can be used to generate and use client certificates without errors.

There are also a number of deficiencies in the <keygen> label: (e.g. 10 below)

    1. Certificates (certificates) are not easily accessible in different systems (but for some systems, this is an advantage).

    2. The private key is not stored in a standard location.

    3. Seeing <keygen> tag generation on HTML pages is always confusing and difficult to understand.

    4. The <keygen> tag lets the user select the appropriate key from a list, but most users do not know how to choose it.

    5. Many users are not sure whether to download the certificate (Certificate) as prompted.

    6. <keygen> tags do not provide a mechanism to manage certificates to invalidate them.

    7. There is no standard key length or hash to achieve browser independence.

    8. Algorithms are not supported (RSA, DSA, ECC, etc.).

    9. The size selection of a key can only be derived from the form content generated by the <keygen> tag, not the user's choice.

    10. Signatures can only be based on MD5, not other cryptographic algorithms.

Browser support

All major browsers support <keygen> tags, in addition to Internet Explorer and Safari.

"Recommended"

The specific use of HTML tags legend you know what? Legend tags properties and how to use them

What is the HTML map tag? HTML map tag structure and how to use the detailed method

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.