[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Faster way to deescrow Clipper

To: Mike Ingle <[email protected]>, [email protected]
Subject: Re: Faster way to deescrow Clipper
From: "Perry E. Metzger" <[email protected]>
Date: Fri, 03 Jun 1994 08:55:43 -0400
In-Reply-To: Your message of "Fri, 03 Jun 1994 07:57:06 EDT." <[email protected]>
Reply-To: [email protected]
Sender: [email protected]


"Perry E. Metzger" says:
> 
> Mike Ingle says:
> > The attack posted here uses a brute-force search to find a phony LEAF
> > which has a valid checksum. Instead, why not just initialize the chip
> > with a session key and get the LEAF. Reset the chip and initialize it
> > with a different session key, but send the first LEAF instead of the
> > second one.
> 
> An interesting idea. 

As I've now found out (I forwarded the message to Matt -- his paper
wasn't clear on this point) this won't work. As I've said in other
messages, session keys are an element of the method used to generate
the checksum buried in the LEAF.

Perry

References:
- Re: Faster way to deescrow Clipper
  - From: "Perry E. Metzger" <[email protected]>

Prev by Date: Re: Black Eye for NSA, NIST, and Denning
Next by Date: Matt Blaze & Tessera Linked in NYT Again
Prev by thread: Re: Faster way to deescrow Clipper
Next by thread: Re: Faster way to deescrow Clipper
Index(es):
- Date
- Thread