Re: I need some simple encryption.

It isn't worth the hassle to implement the encryption in JavaScirpt. Suggest people use SSL, which is much more secure and reliable than anything you are going to come up with.

There is a big increase in complexity with doing the encryption in the browser. The form requires JavaScript, limiting who can use it. You will need to develop and test solution. You will likely run into variations in JavaScript implementations. You will need to get the JavaScript and Perl implementations to talk.

Doing the encryption in the browser doesn't buy you much security. Public-key encryption is probably too complicated to implement in the browser. Not to mention it requires multiple messages to do a proper key exchange. The simplest solution is to put the key in the page. But then the key is visible to packet sniffers.

Comment on Re: I need some simple encryption.

Replies are listed 'Best First'.
Re^2: I need some simple encryption. by Cap'n Steve (Friar) on Aug 27, 2004 at 01:37 UTC
Yes, I'm intending this to be something other people will use, so I have no control over how they use it. I still haven't made up my mind whether to bother with the encryption (although I'm not sure if the false sense of security would be as much of a drawback as people think it would be), but thanks for the suggestions.	[reply]