[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Secure key exchange

To: [email protected], [email protected]
Subject: Re: Secure key exchange
From: [email protected] (Phil Karn)
Date: Tue, 1 Dec 92 02:27:26 -0800
Cc: [email protected]

>Just to point out, though, this is not foolproof. A good impressionist
>can fool people, especially if they are extremely skilled.

Perhaps. But if it's someone you know well, the imposter may have a
hard time passing that particular Turing Test. For example, Jeff
Schiller called me the other night, nominally to compare our RSA
public keys before signing, but we ended up chewing the fat for nearly
an hour.  It would be hard for an imposter to duplicate that feat
without arousing my suspicion.

Another (somewhat more likely) possibility is that the NSA or FBI
might be holding a gun to the guy's head when you call him up to
verify the key you got with his name on it. Perhaps we need "duress"
hash codes. :-)

Phil

Prev by Date: Re: Secure Key exchange
Next by Date: Nonlinear CODEC of the digital domain
Prev by thread: Re: Secure Key exchange
Next by thread: Re: Secure key exchange
Index(es):
- Date
- Thread