Re: Comments wanted on an authentication protocol
From: Anne & Lynn Wheeler (lynn_at_garlic.com)
Date: 01/30/04
- Next message: p2pdotcn: "Re: aesphm.h?"
- Previous message: Michael Amling: "Re: Comments wanted on an authentication protocol"
- In reply to: Johan Lindh: "Re: Comments wanted on an authentication protocol"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 30 Jan 2004 17:47:42 GMT
Johan Lindh <johan@linkdata.getridofthis.se> writes:
> Sigh. You're right. As soon as there is any kind of known plaintext in
> the stream, a brute force attack is possible offline.
>
> I guess I'll have to look for some kind of key exchange after all. I'd
> really hoped to avoid having a lot of number crunching code, prime
> searching and whatnot.
note that there are other kinds of public key signature algorithms
like ecdsa ... which are somewhat less compute intensive.
http://csrc.nist.gov/cryptval/dss.htm
there have also been kerberos pk-init to use public key signature in
place of shared-secret/password ... and various kinds of radius
implementations that support public key signature for authentication.
ietf draft discussing key lengths and some time/execution:
http://www.ietf.org/internet-drafts/draft-orman-public-key-lengths-07.txt
pk-init ... or "public key cryptography for initial authentication in
kerberos":
http://www.ietf.cnri.reston.va.us/internet-drafts/draft-ietf-cat-kerberos-pk-init-17.txt
-- Anne & Lynn Wheeler | http://www.garlic.com/~lynn/ Internet trivia 20th anv http://www.garlic.com/~lynn/rfcietff.htm
- Next message: p2pdotcn: "Re: aesphm.h?"
- Previous message: Michael Amling: "Re: Comments wanted on an authentication protocol"
- In reply to: Johan Lindh: "Re: Comments wanted on an authentication protocol"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
