From: Nick Khamis <symack_at_gmail.com>
Date: Fri, 9 Aug 2013 16:53:23 -0400
Hmmmm either pass cryptographic keys back and forth on an open
connection or send tokens one a secured line. Really good point on
the SSL, CA, expiration, and warning messages...