[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: subjective names and MITM

Adam Shostack writes:
>	The key does indeed have a high likelihood of being unique,
>but dealing with 1024 bit identifiers could strain database systems,
>especially when 100 well chosen bits would be than enough.

Hence the suggestion to use a hash of the key instead of the key
itself.  Someone pointed out that a uniformly distributed 1024 bit
prime has something like 1014 bits of entropy.  An md5 hash of the key
should have about 128 bits of entropy, with the probability of a
collision among 2^33 keys (one per person, worldwide) being about
1 in 2^95, or about 1 in 10^29.  Sounds like we're safe, even without
straining our databases.