Re: New Method for Authenticated Public Key Exchange without Digital Certificates

From: Allen Pulsifer (amicrypt_at_amishare.com)
Date: 08/06/04

Next message: Use-Author-Address-Header_at_[127.1: "Re: SafeBoot BROKEN (and instantly withdrawn)"
Previous message: Michael Amling: "Re: classic crypto challenge"
In reply to: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
Next in thread: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
Reply: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
Reply: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 6 Aug 2004 06:30:42 -0700

Anne & Lynn Wheeler <lynn@garlic.com> wrote:
> in general there is a lot written on secure or out-of-band channels
> for secure key exchange ... mostly having to do with symmetric keys.

Hello Anne & Lynn,

If you already have a secure channel (i.e., secret and authenticated),
it would seem straightforward to use that secure channel to exchange
keys and bootstrap a new secure channel.

The problem we were interested in solving is how to bootstrap a secure
channel without a pre-existing shared secret or a pre-existing secure
channel that can be used to exchange a secret. The protocol we
described does not at any point rely on an out-of-band secure channel
to exchange a secret. We were unable to find a prior publication or
documented protocol that addresses this problem.

Best Regards,

Allen Pulsifer
http://www.amishare.com
amicrypt@amishare.com

Next message: Use-Author-Address-Header_at_[127.1: "Re: SafeBoot BROKEN (and instantly withdrawn)"
Previous message: Michael Amling: "Re: classic crypto challenge"
In reply to: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
Next in thread: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
Reply: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
Reply: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: Email Encryption Between Servers
... Secure E-mail, PGP, secure web server, ... Are the doctors going to have separate keys for each provider, doctor, ... desktop e-mail encryption, enterprise e-mail encryption. ... manage key exchange, staff training, ...
(Security-Basics)
Re: Exchange Security and Administration: Small/Tiny Site
... Setting up Outlook Anywhere (which is the "HTTP connector" you mentioned) isn't very difficult. ... As for security, Exchange is very secure out of the box and is not hard to maintain from a security standpoint. ... Microsoft offers a tool called the Exchange Best Practices Analyzer that can scan your Exchange servers and identify many configuration and security issues and issues that don't conform to the recommended best practices. ...
(microsoft.public.exchange.setup)
RE: Email Encryption Between Servers
... It allows you to have a secure File and Messaging system. ... Subject: Email Encryption Between Servers ... Are the doctors going to have separate keys for each provider, doctor, ... manage key exchange, staff training, ...
(Security-Basics)
Re: Question
... but I am new to cryptography and wish to know ... "Foolproof" is a hard term to define. ... A perfectly secure code can be made ... Plus it is very difficult to exchange these long keys ...
(sci.crypt)
Re: How to configure IMAP -SMTP securely for remote users tg
... Exchange config. ... So these connections are secure. ... > My problem is with the SMTP part. ... > this smtp virtual server. ...
(microsoft.public.exchange.connectivity)