Re: Symmetric alternative to public-key crypto for key-exchange?

From: Paul Rubin (//phr.cx_at_NOSPAM.invalid)
Date: 08/30/05

• Next message: Joe Peschel: "Re: My my, how time flies ...... it's been about "1 hour" -- anyone cracked CryptoSMS yet?"
• Previous message: Regis: "Re: Re-secured Algorithm?"
• In reply to: arachnidster_at_gmail.com: "Symmetric alternative to public-key crypto for key-exchange?"
• Next in thread: mobius30: "Re: Symmetric alternative to public-key crypto for key-exchange?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 29 Aug 2005 22:29:39 -0700

arachnidster@gmail.com writes:
> 1) Bob encrypts the key to be exchanged with his key and sends it to
> Alice
> 2) Alice encrypts this message with her key and sends it back to Bob
> 3) Bob decrypts this message with his key, and sends it back to Alice
> 4) Alice decrypts the message, revealing the key

This is called Shamir's 3-pass protocol, independently discovered by
Okamoto.

> This requires a couple of properties from the symmetric cipher used: It
> must be true that D(b, D(a, E(b, E(a, message)))) = message, and it
> must not be possible to recover the key given the intermediate messages
> transmitted between Alice and Bob (for example, with a standard stream
> cipher, XORing subsequent messages would reveal both Alice and Bob's
> keystreams, and hence the original message).
>
> My question is this: is anyone familiar with a cipher that meets these
> criteria?

The obvious one is the Hellman-Pohlig cipher, which does a modular
exponentiation operation similar to various public-key ciphers. That
is, the protocol is about as computationally expensive as a comparable
public-key protocol.

• Next message: Joe Peschel: "Re: My my, how time flies ...... it's been about "1 hour" -- anyone cracked CryptoSMS yet?"
• Previous message: Regis: "Re: Re-secured Algorithm?"
• In reply to: arachnidster_at_gmail.com: "Symmetric alternative to public-key crypto for key-exchange?"
• Next in thread: mobius30: "Re: Symmetric alternative to public-key crypto for key-exchange?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Is this a hoax or real? ... Coan's free Hidden File Detector software. ... Alice is the bad guy. ... location of a file that Bob, the good guy, can get to. ... Alice has her own Web server. ... (microsoft.public.security) Re: Is this a hoax or real? ... Alice is the bad guy. ... location of a file that Bob, the good guy, can get to. ... Alice has her own Web server. ... Alice can pilfer more than a file. ... (microsoft.public.security) Whats the problem ... Alice is the bad guy. ... location of a file that Bob, the good guy, can get to. ... Alice has her own Web server. ... Alice can pilfer more than a file. ... (microsoft.public.security) Does Microsoft listen or care? ... Alice is the bad guy. ... location of a file that Bob, the good guy, can get to. ... Alice has her own Web server. ... Alice can pilfer more than a file. ... (microsoft.public.win2000.security) Dumb anti-MITM hacks / CAPTCHA application ... Ivan is a trusted introducer known to Alice and Bob. ... Mitch is a possible MITM. ... (sci.crypt)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint