1995-10-10 - Re: Certificate proposal
Header Data
From: Adam Shostack <adam@homeport.org>
To: smart@mel.dit.csiro.au (Bob Smart)
Message Hash: 328c56a076e4fa09577886436edc40146a8ea9c7c31d55c2edb501f43af24f5f
Message ID: <199510101422.KAA03235@homeport.org>
Reply To: <199510100002.AA01774@shark.mel.dit.csiro.au>
UTC Datetime: 1995-10-10 14:20:09 UTC
Raw Date: Tue, 10 Oct 95 07:20:09 PDT
Raw message
From: Adam Shostack <adam@homeport.org>
Date: Tue, 10 Oct 95 07:20:09 PDT
To: smart@mel.dit.csiro.au (Bob Smart)
Subject: Re: Certificate proposal
In-Reply-To: <199510100002.AA01774@shark.mel.dit.csiro.au>
Message-ID: <199510101422.KAA03235@homeport.org>
MIME-Version: 1.0
Content-Type: text
"Never underestimate the effort your opponent will expend on
cryptanalysis." -- Robert Morris, Sr., speaking at Crypto '95
If a MITM attack would be useful, then there will be times
when one will be mounted. It might take 30 law enforcement officers
to do it, but it has been demonstrated that the FBI will use that many
people for a year or more on some cases. The CIA and NSA can be
presumed to be willing to spend more time and effort to get certain
results.
Bob Smart wrote:
| Exactly. If a public key ONLY has an existence in cyberspace (as per
| Pr0duct Cipher) then it is impossible to prove that they aren't
| surrounded by a MITM cloud which is also seeing everything they
| see without them knowing it.
|
| It is important to be aware of this. However the importance is
| perhaps mitigated by the following considerations:
|
| 1. Surrounding someone with such an MITM cloud is so hard as to
| be impossible for practical purposes. This will be more true
| if the person trying to establish a cyberspace identity can
| prove that they move around physically and use different service
| providers at different times [but then again perhaps if you
--
"It is seldom that liberty of any kind is lost all at once."
-Hume
Thread
Return to October 1995
- Return to “aba@dcs.exeter.ac.uk”
- Return to “Adam Shostack <adam@homeport.org>”
- Return to “Bob Smart <smart@mel.dit.csiro.au>”
- Return to “Eli Brandt <eli@UX3.SP.CS.CMU.EDU>”
- Return to “Hal <hfinney@shell.portal.com>”
- Return to “m5@dev.tivoli.com (Mike McNally)”
- Return to “Mats Bergstrom <asgaard@sos.sll.se>”
- Return to “sameer <sameer@c2.org>”
- Return to “Scott Brickner <sjb@universe.digex.net>”
- Return to “sjb@universe.digex.net (Scott Brickner)”
Return to “tcmay@got.net (Timothy C. May)”
- 1995-10-09 (Mon, 9 Oct 95 10:28:50 PDT) - Re: Certificate proposal - tcmay@got.net (Timothy C. May)
- 1995-10-09 (Mon, 9 Oct 95 12:04:29 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 12:31:33 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
- 1995-10-09 (Mon, 9 Oct 95 13:40:11 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 16:03:45 PDT) - Re: Certificate proposal - Scott Brickner <sjb@universe.digex.net>
- 1995-10-09 (Mon, 9 Oct 95 16:07:03 PDT) - Re: Certificate proposal - Eli Brandt <eli@UX3.SP.CS.CMU.EDU>
- 1995-10-09 (Mon, 9 Oct 95 16:25:16 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-09 (Mon, 9 Oct 95 14:15:11 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-09 (Mon, 9 Oct 95 15:42:04 PDT) - Re: Certificate proposal - aba@dcs.exeter.ac.uk
- 1995-10-09 (Mon, 9 Oct 95 16:17:41 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-10 (Mon, 9 Oct 95 17:01:03 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
- 1995-10-10 (Mon, 9 Oct 95 17:02:51 PDT) - Re: Certificate proposal - Bob Smart <smart@mel.dit.csiro.au>
- 1995-10-10 (Tue, 10 Oct 95 07:20:09 PDT) - Re: Certificate proposal - Adam Shostack <adam@homeport.org>
- 1995-10-10 (Tue, 10 Oct 95 07:52:27 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-10 (Tue, 10 Oct 95 09:22:07 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 16:17:41 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 16:11:29 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-09 (Mon, 9 Oct 95 16:52:11 PDT) - Re: Certificate proposal - Scott Brickner <sjb@universe.digex.net>
- 1995-10-10 (Tue, 10 Oct 95 05:44:46 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-10 (Tue, 10 Oct 95 08:33:35 PDT) - Re: Certificate proposal - sjb@universe.digex.net (Scott Brickner)
- 1995-10-09 (Mon, 9 Oct 95 15:42:04 PDT) - Re: Certificate proposal - aba@dcs.exeter.ac.uk
- 1995-10-09 (Mon, 9 Oct 95 13:40:11 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 12:31:33 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
- 1995-10-09 (Mon, 9 Oct 95 12:35:35 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-09 (Mon, 9 Oct 95 13:55:12 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 14:40:16 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
- 1995-10-09 (Mon, 9 Oct 95 14:47:55 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-11 (Tue, 10 Oct 95 17:53:10 PDT) - Re: Certificate proposal - Mats Bergstrom <asgaard@sos.sll.se>
- 1995-10-09 (Mon, 9 Oct 95 16:54:56 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 12:04:29 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>