[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ESP Unix encrypted session protocol software

To: [email protected]
Subject: Re: ESP Unix encrypted session protocol software
From: [email protected] (Eric Hughes)
Date: Tue, 31 Jan 1995 21:27:58 -0800
In-Reply-To: <[email protected]> (message from Matt Blaze on Mon, 30 Jan 95 13:02:08 -0500)
Sender: [email protected]

   From: Matt Blaze <[email protected]>

   [this = storing secrets]
   At the extreme, fixing this is a Hard Problem.  In practice for establishing
   a reasonably secure session, it all depends on how much you worry about a
   full-blown (two way) spoofing attack against IP.

I know Matt realizes, but let me repeat for the rest of the list.

Just because plain old Diffie Hellman is subject to active attack
doesn't mean it's useless.  Some protection is better than no
protection at all.  It's still worthwhile implementing some security
to make an opponent's task harder than to implement no security.

And just because some people find this level of security inadequate
does not mean that everyone else does.

Eric

References:
- Re: ESP Unix encrypted session protocol software
  - From: Matt Blaze <[email protected]>

Prev by Date: Re: Frothing remailers - an immodest proposal
Next by Date: Re: DON'T READ!--I'm leaving for Monte Carlo just in time
Prev by thread: Re: ESP Unix encrypted session protocol software
Next by thread: Re: ESP Unix encrypted session protocol software
Index(es):
- Date
- Thread