[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: CERT advisory

To: [email protected] (cypherpunks)
Subject: Re: CERT advisory
From: [email protected] (Robert Cain)
Date: Sat, 5 Feb 1994 11:44:46 -0800 (PST)
In-Reply-To: <[email protected]> from "Eric Hughes" at Feb 4, 94 04:55:34 pm

Eric Hughes sez:
> 
> Since active interception is not nearly so easy as passive listening,

This isn't true of anything but the aether itself or a point to point
wire with integrity.  In any switched or networked system with routing,
active interception is trivial.  That is why D-H has a lower level
of applicability than generally considered.

> it would be appropriate to use a Diffie-Hellman key exchange in this
> situation.  This protocol has no persistent private keys, so the issue
> of keeping a private key around securely is not an issue.

Yes, the one time key usage is an important factor in the D-H.
Nothing can be determined from one session that will help in
breaking another.


Peace,

Bob

-- 
Bob Cain    [email protected]   408-354-8021


           "I used to be different.  But now I'm the same."


--------------PGP 1.0 or 2.0 public key available on request.------------------

Follow-Ups:
- CERT advisory
  - From: [email protected] (Eric Hughes)

References:
- CERT advisory
  - From: [email protected] (Eric Hughes)

Prev by Date: Apologies, but . . .
Next by Date: Crypto Regulation Reform
Prev by thread: CERT advisory
Next by thread: CERT advisory
Index(es):
- Date
- Thread