Hi Mikael,

This document is fantastic (more so that it has been built in English!), thanks for pointing it out! There is a lot of information out there nowadays, some of it good, some of it bad - but it's not easy to find such hidden gems.

With the risk of sounding ungrateful and pedantic, I have one small issue with the website it's hosted on though, considering we're on the topic of security, MITM and best practices: the website is only available via HTTP and it's running an older version of Wordpress. Upon trying to access it via HTTPS, the certificate offered is for interlan.se and the page is some admin login for Halon SP (whatever that is).

Cheers,
Cristian

On Tue, Nov 11, 2014 at 8:05 PM, Mikael Abrahamsson <swmike@swm.pp.se> wrote:

Hi,

I keep running into people who have never heard of the excellent document that Torbjörn Eklöv has created over time. It came out of work to create requirements and certification for access networks, one large reason was to assure a secure end user connection that didn't have MITM and spoofing problems.

The main site is here:

http://secureenduserconnection.se/

Direct link to the current version of the document:

http://secureenduserconnection.se/wp-content/uploads/2012/02/SEC-Secure-End-user-Connection-2014-05-30.pdf

I recommend everybody looking for information and requirements on how to create a secure network to read this document. It's very comprehensive.

--
Mikael Abrahamsson email: swmike@swm.pp.se