[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: RFC: A UNIX crypt(3) replacement



At 08:51 PM 11/16/96 -0800, "Joshua E. Hill" <[email protected]> wrote:
>	I'm trying to think of a function to replace UNIX's crypt(3).  
>My design criteria are as follows:
...
>NMAC(k, m) = H(k1, H(k2, m))
....
>Would (n . P . n ) be better?

NMAC is probably a bit stronger, but the real question is why
you want to reinvent crypt(3).  It was fine for logging in from a
hardwired or dialup dumb terminal, but in a network environment you
really need some sort of one-time password system.  S/Key, for instance.

#			Thanks;  Bill
# Bill Stewart, +1-415-442-2215 [email protected]
# You can get PGP outside the US at ftp.ox.ac.uk