1995-02-11 - Re: why pgp sucks
Header Data
From: “Perry E. Metzger” <perry@imsi.com>
To: Derek Atkins <warlord@MIT.EDU>
Message Hash: 86c7e43901b9ca70bf37efac1bd2744c93dcec8352cbe75c7d200c62b1cfae8e
Message ID: <9502111331.AA16528@snark.imsi.com>
Reply To: <9502110321.AA29986@toxicwaste.media.mit.edu>
UTC Datetime: 1995-02-11 13:31:40 UTC
Raw Date: Sat, 11 Feb 95 05:31:40 PST
Raw message
From: "Perry E. Metzger" <perry@imsi.com>
Date: Sat, 11 Feb 95 05:31:40 PST
To: Derek Atkins <warlord@MIT.EDU>
Subject: Re: why pgp sucks
In-Reply-To: <9502110321.AA29986@toxicwaste.media.mit.edu>
Message-ID: <9502111331.AA16528@snark.imsi.com>
MIME-Version: 1.0
Content-Type: text/plain
Derek Atkins says:
> The only problem with piggybacking off the current DNS implementation
> is that DNS was designed for SMALL pieces of data (read: hostnames and
> IP addresses). PGP keys are HUGE pieces of data, in respect, and DNS
> just wont handle the sizes. For example, my PGP key is about 8k of
> data (approximately). DNS would never be able to handle that!
Well, its already been modified to do it. Read the drafts by Eastlake
and Kaufman on DNS security, which basically means keys in the DNS and
signed DNS records.
> It its bigger than a single UDP packet DNS has trouble.
So you use TCP -- DNS already supports that. In any case, however, the
reassembly size and lowest common denominator MTUs are being jacked
way up for IPv6.
> No, while DNS is a perfect model for a distributed keyserver,
> it is by no means the implementation infrastructure that we want
> to use.
I very strongly disagree. Even today, we find more and more bugs in
DNS. If we had to start from scratch, we'd have to build an
infrastructure like DNS all over again, only to find that we suffer
from all the same old bugs and end up with a parallel implementation
that looks almost exactly like DNS only less reliable.
Perry
Thread
Return to February 1995
- Return to “Derek Atkins <warlord@MIT.EDU>”
- Return to “Eric Hollander <hh@xcf.Berkeley.EDU>”
- Return to “Erich von Hollander <erich@CSUA.Berkeley.EDU>”
- Return to “Greg Morgan <mac5tgm@hibbs.vcu.edu>”
- Return to “Hal <hfinney@shell.portal.com>”
- Return to ““James A. Donald” <jamesd@netcom.com>”
- Return to “Matt Blaze <mab@crypto.com>”
- Return to ““Perry E. Metzger” <perry@imsi.com>”
Return to “Robert Rothenburg Walking-Owl <rrothenb@ic.sunysb.edu>”
- 1995-02-10 (Fri, 10 Feb 95 11:03:28 PST) - why pgp sucks - Eric Hollander <hh@xcf.Berkeley.EDU>
- 1995-02-10 (Fri, 10 Feb 95 11:48:38 PST) - Re: why pgp sucks - Matt Blaze <mab@crypto.com>
- 1995-02-10 (Fri, 10 Feb 95 11:58:46 PST) - Re: why pgp sucks - “Perry E. Metzger” <perry@imsi.com>
- 1995-02-10 (Fri, 10 Feb 95 12:32:05 PST) - Re: why pgp sucks - Hal <hfinney@shell.portal.com>
- 1995-02-10 (Fri, 10 Feb 95 12:36:40 PST) - Re: why pgp sucks - “Perry E. Metzger” <perry@imsi.com>
- 1995-02-10 (Fri, 10 Feb 95 12:48:05 PST) - Re: why pgp sucks - Greg Morgan <mac5tgm@hibbs.vcu.edu>
- 1995-02-10 (Fri, 10 Feb 95 13:10:58 PST) - Re: why pgp sucks - Derek Atkins <warlord@MIT.EDU>
- 1995-02-10 (Fri, 10 Feb 95 13:19:27 PST) - Re: why pgp sucks - “Perry E. Metzger” <perry@imsi.com>
- 1995-02-10 (Fri, 10 Feb 95 13:36:08 PST) - Re: why pgp sucks - Derek Atkins <warlord@MIT.EDU>
- 1995-02-10 (Fri, 10 Feb 95 13:42:13 PST) - Re: why pgp sucks - “Perry E. Metzger” <perry@imsi.com>
- 1995-02-10 (Fri, 10 Feb 95 13:36:08 PST) - Re: why pgp sucks - Derek Atkins <warlord@MIT.EDU>
- 1995-02-11 (Fri, 10 Feb 95 18:08:13 PST) - Re: why pgp sucks - “James A. Donald” <jamesd@netcom.com>
- 1995-02-10 (Fri, 10 Feb 95 13:19:27 PST) - Re: why pgp sucks - “Perry E. Metzger” <perry@imsi.com>
- 1995-02-10 (Fri, 10 Feb 95 14:31:27 PST) - Re: why pgp sucks - Matt Blaze <mab@crypto.com>
- 1995-02-11 (Fri, 10 Feb 95 16:29:58 PST) - Re: why pgp sucks - Hal <hfinney@shell.portal.com>
- 1995-02-11 (Fri, 10 Feb 95 17:11:41 PST) - Re: why pgp sucks - Matt Blaze <mab@crypto.com>
- 1995-02-11 (Fri, 10 Feb 95 19:16:52 PST) - Re: why pgp sucks - Derek Atkins <warlord@MIT.EDU>
- 1995-02-11 (Fri, 10 Feb 95 19:10:18 PST) - Re: why pgp sucks - “Perry E. Metzger” <perry@imsi.com>
- 1995-02-11 (Fri, 10 Feb 95 19:21:16 PST) - Re: why pgp sucks - Derek Atkins <warlord@MIT.EDU>
- 1995-02-11 (Sat, 11 Feb 95 05:31:40 PST) - Re: why pgp sucks - “Perry E. Metzger” <perry@imsi.com>
- 1995-02-11 (Fri, 10 Feb 95 19:21:16 PST) - Re: why pgp sucks - Derek Atkins <warlord@MIT.EDU>
- 1995-02-11 (Fri, 10 Feb 95 17:11:41 PST) - Re: why pgp sucks - Matt Blaze <mab@crypto.com>
- 1995-02-11 (Fri, 10 Feb 95 16:29:58 PST) - Re: why pgp sucks - Hal <hfinney@shell.portal.com>
- 1995-02-10 (Fri, 10 Feb 95 13:10:58 PST) - Re: why pgp sucks - Derek Atkins <warlord@MIT.EDU>
- 1995-02-10 (Fri, 10 Feb 95 12:32:05 PST) - Re: why pgp sucks - Hal <hfinney@shell.portal.com>
- 1995-02-10 (Fri, 10 Feb 95 11:58:46 PST) - Re: why pgp sucks - “Perry E. Metzger” <perry@imsi.com>
- 1995-02-10 (Fri, 10 Feb 95 12:27:59 PST) - Re: why pgp sucks - Hal <hfinney@shell.portal.com>
- 1995-02-10 (Fri, 10 Feb 95 12:59:12 PST) - Re: why pgp sucks - Derek Atkins <warlord@MIT.EDU>
- 1995-02-10 (Fri, 10 Feb 95 15:03:31 PST) - Re: why pgp sucks - Erich von Hollander <erich@CSUA.Berkeley.EDU>
- 1995-02-10 (Fri, 10 Feb 95 14:29:15 PST) - Re: why pgp sucks - Robert Rothenburg Walking-Owl <rrothenb@ic.sunysb.edu>
- 1995-02-10 (Fri, 10 Feb 95 11:48:38 PST) - Re: why pgp sucks - Matt Blaze <mab@crypto.com>