My personal opinion on the matter is if the site doesn't use SSL for
something like this, I'm not going to use it if I have any choice.
Considering that any of the sites here on campus can get a free SSL
certificate (http://certs.ipsca.com) I don't think there's much of a
reason they don't have one.
On Apr 9, 2008, at 11:04 AM, Tom Rockwell wrote:
> Is there a requirement that websites that use netid for
> authentication be ssl encrypted, or at least perform the
> authentication using ssl?
> Given that several MSU websites that use netid for authentication
> allow access to personal information, I'm wary of using netid over a
> plain text link. Note that the non-encrypted site is not an
> official MSU site.
Michigan State University
Biomedical Research and Informatics Center (BRIC)
100 Conrad Hall
East Lansing, MI 48824
E-mail: [log in to unmask]