[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

broadcast encryption

To: [email protected]
Subject: broadcast encryption
From: [email protected] (Eric Hughes)
Date: Tue, 9 Aug 94 08:56:36 -0700
In-Reply-To: Bob Snyder's message of Tue, 9 Aug 1994 11:00:20 -0400 <aa6d46671a0210235f5f@DialupEudora>
Sender: [email protected]

   What I would like to see is low-level digital signatures on the level of IP
   or AX.25.  IP is doable, I would think.  

What is the policy purpose for signing packets?  It will affect the
design.

Do you want to identify users, processes, or machines?

If you want to reject packets not signed or badly signed _before_
further processing, that's one way.  If you want to detect
interposition in a stream parallel to the use of that stream, that
would be another.  

Do you want each packet to carry an independent signature, or can
packets be aggregated for signature?  This is a separate problem,
since "aggregation" doesn't mean a delay, it means there is state
information carried which is involved in checking the signature.  This
question involves the abstraction level where authentication is taking
place.

Too often a particular situation is in mind and remains unspoken.
Making assumptions explicit is necessary for good design and useful
debate.

Eric

Follow-Ups:
- Re: broadcast encryption
  - From: "Perry E. Metzger" <[email protected]>

References:
- Re: broadcast encryption
  - From: [email protected] (Bob Snyder)

Prev by Date: Re: Remailer ideas
Next by Date: Gore Letter and Software Key Escrow
Prev by thread: Re: broadcast encryption
Next by thread: Re: broadcast encryption
Index(es):
- Date
- Thread