1995-08-28 - SSL ACKs vs. Anonymity (was Re: SSL trouble)

Header Data

From: Nathan Loofbourrow <loofbour@cis.ohio-state.edu>
To: cypherpunks@toad.com
Message Hash: a1c752b8d218444116316c2b98f378c2d8ddf80cdb2af40fc0f5511e93fe85a9
Message ID: <199508271943.PAA16219@hammond.cis.ohio-state.edu>
Reply To: <199508271848.LAA18104@Csli.Stanford.EDU>
UTC Datetime: 1995-08-28 01:52:16 UTC
Raw Date: Sun, 27 Aug 95 18:52:16 PDT

Raw message

From: Nathan Loofbourrow <loofbour@cis.ohio-state.edu>
Date: Sun, 27 Aug 95 18:52:16 PDT
To: cypherpunks@toad.com
Subject: SSL ACKs vs. Anonymity (was Re: SSL trouble)
In-Reply-To: <199508271848.LAA18104@Csli.Stanford.EDU>
Message-ID: <199508271943.PAA16219@hammond.cis.ohio-state.edu>
MIME-Version: 1.0
Content-Type: text/plain


Having ACKs from the people cracking your SSL exchange is fun; it
provides feedback on whether your code is working, allows the
volunteers to see their name in lights, and gives you this nice warm
feeling that progress is being made. In server-allocation schemes, it
also provides an optimization: no need to hand out chunks that have
been ACKed.

Not having ACKs provides anonymity to those who are performing the
crack. The only two agents who have issues of anonymity to consider
are: the one presenting the challenge (and its prize), and the one
that gets the solution (and its prize).

Perhaps anonymity is unimportant for toy problems: so far, Hal has not
complained that Agent 86's CCNs have been spread all over the Net. I
can imagine a "real" challenge being a much more serious affair. Do
you really want to be caught talking with www.brute.cam.cl.ac.uk for
two days straight just before someone posts Louis Freeh's American
Express number to alt.credit-cards.exploit?

nathan





Thread