[EAS] Missed IPAWS RWT
David Turnmire
eassbelist at cableone.net
Fri Jan 17 11:54:40 CST 2014
It seems clear enough to me that there are risks involved with any type
of automatic software update. But I'm wondering whether in the case of
security certificates, that it might be advisable to design the ENDEC to
automatically update its certificate as needed. It is, after all,
required by nature to be connected to the internet. And a certificate
update isn't likely to break a box in the way a software update gone
awry can. And the automatic certificate update process could presumably
take some security cautions such as only querying the SAGE website and
using a secure channel w/certificate to do that update. That might even
be more secure than the typical person doing a manual update.
Just looking for ways to minimize this much disruption in the future
over something as simple as a certificate.
While I'm at it.... can the other vendors that monitor this list comment
on how THEIR boxes handle certificates? TFT? DASDEC? Gorman-Redlich? etc
Thanks
Dave
More information about the EAS
mailing list