The identity send by Fax machines is not secure it is trivially easy to send a fax with a header that makes it appears to come from someone else.
For more about CHAP see RFC1994. It is not without it problems.
It seems to me that it is neither necessary or appropriate for the NHS of the taxpayer to provide Internet access for the private use of GPs and their families. GPs clearly need access from home this should be provided separately but alongside from any mechanism which provides private access and the NHSnet code of connection should not be allowed to inhibit this.
-------------------------------------------------------------------------------------------------
Ewan Davis Also at [log in to unmask] - PGP key available from ldap://certserver.pgp.com
Work Phone numbers - Voice +44 (1) 527 579414 Fax +44(1)527 833188
Chairman AAH Meditel ,Peak Systems, PharMed, CSSA Primary Care Group
-----Original Message-----
From: Adrian Midgley [SMTP:[log in to unmask]]
Sent: Sunday, November 29, 1998 6:14 PM
To: [log in to unmask]
Subject: Re: RE: Info please, ISDN ensures strong authentication?
[log in to unmask],Net wrote at 14:57 on 29/11/98
about "RE: Info please, ISDN ensures strong authentication?":
-----------------------------
SNIP
>The ISDN connection uses two levels of security, CLI (caller line
>identification and CHAPS, Challenge, Handshake Authentification
>Protocol.
OK, CLI is available on PSTN as well.
CHAPS is used by my ISP, on a modem connection over PSTN.
SNIP
>CHAPS then goes through a handshaking procedure occurs with an
exchange of
>identification like fax machines do, (the number called
>appears on your fax)which can involve an exchange of passwords. This
is a
SNIP
|