Restricting access of a Web application using public key/ private key techniques?

Client certificates are standardized in the servlet spec, so yes this is absolutely possible. You specify CLIENT-CERT in your web. Xml file.

Client certificates are standardized in the servlet spec, so yes this is absolutely possible. You specify CLIENT-CERT in your web. Xml file.

You will need to set up the keys in WebSphere's keystore (publib.boulder.ibm.com/infocenter/wasinf...) but this is a proprietary procedure for different containers. Client certificates are public/private keys, so that should meet your requirement. There shouldn't be any browser issues, other than giving the users different instructions for different browsers to set up their certificates.

Its in the JEE spec but has its own problems implementing it. These articles show how to enable and solutions to common issues that arise in such an authentication schema.

I cant really gove you an answer,but what I can give you is a way to a solution, that is you have to find the anglde that you relate to or peaks your interest. A good paper is one that people get drawn into because it reaches them ln some way.As for me WW11 to me, I think of the holocaust and the effect it had on the survivors, their families and those who stood by and did nothing until it was too late.