[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Some thoughts on the Chinese Net

To: Bill Stewart <[email protected]>
Subject: Re: Some thoughts on the Chinese Net
From: "Perry E. Metzger" <[email protected]>
Date: Mon, 19 Feb 1996 14:21:34 -0500
Cc: [email protected]
In-Reply-To: Your message of "Sun, 18 Feb 1996 09:45:38 PST." <[email protected]>
Reply-To: [email protected]
Sender: [email protected]

Bill Stewart writes:
> >They could use no stock software, and they would grind every machine
> >in the country to its knees doing the signatures. RSA signatures
> >aren't cheap.
> 
> Could you use IPv6 / IPSP authentication to do the job?

Yes, they could. (Its IPSEC these days, by the way).

However, again, I don't think it will do them much good, especially
since forcing people to deploy strong cryptography everywhere isn't
in their best interests. They could try only doing the AH part of the
protocol, of course, but even then, using forged, stolen, or otherwise
ingenuine credentials isn't that hard. Crypto isn't a panacea, and if
you can't trust both endpoints its hard to trust the crypto itself...

Perry

Follow-Ups:
- Re: Some thoughts on the Chinese Net
  - From: Alex Strasheim <[email protected]>

References:
- Re: Some thoughts on the Chinese Net
  - From: Bill Stewart <[email protected]>

Prev by Date: Encryption in software licenses...
Next by Date: Re: PING packets illegal?
Prev by thread: Re: Some thoughts on the Chinese Net
Next by thread: Re: Some thoughts on the Chinese Net
Index(es):
- Date
- Thread