1993-08-11 - Secure voice software issues
Header Data
From: karn@qualcomm.com (Phil Karn)
To: guy@theporch.raider.net
Message Hash: f13146c70321077edd750fc598c2eadfa2594f106cf2955c9b09b2fbb96d7b37
Message ID: <9308112117.AA03868@servo>
Reply To: <m0oQB7m-0009UVC@theporch.raider.net>
UTC Datetime: 1993-08-11 21:22:05 UTC
Raw Date: Wed, 11 Aug 93 14:22:05 PDT
Raw message
From: karn@qualcomm.com (Phil Karn)
Date: Wed, 11 Aug 93 14:22:05 PDT
To: guy@theporch.raider.net
Subject: Secure voice software issues
In-Reply-To: <m0oQB7m-0009UVC@theporch.raider.net>
Message-ID: <9308112117.AA03868@servo>
MIME-Version: 1.0
Content-Type: text/plain
>To me at least this seems unimportant for the application. If all you're
>doing is exchanging session keys over the phone, it doesn't really matter if
>you are sure that the public key actually belongs to who it claims it does,
Well...yes. *If* you know the person you are talking to, then you can
read off your session key (or preferably its hash) to guard against the
man in the middle. But let's say you are being referred to someone who
you don't already know (or you know them only by email, and have no idea
what they sound like). You trust this person, but you can't depend on
an oral challenge-response. The existing PGP web should be handy here.
Phil
Thread
Return to August 1993
- Return to “guy@theporch.raider.net (Jonathan Guy)”
- Return to “karn@qualcomm.com (Phil Karn)”
- Return to “paul@poboy.b17c.ingr.com (Paul Robichaux)”
- Return to ““Perry E. Metzger” <pmetzger@lehman.com>”
Return to “thug@phantom.com (Murdering Thug)”
- 1993-08-10 (Mon, 9 Aug 93 18:16:41 PDT) - re: Secure voice software issues - thug@phantom.com (Murdering Thug)
- 1993-08-10 (Mon, 9 Aug 93 18:41:52 PDT) - re: Secure voice software issues - paul@poboy.b17c.ingr.com (Paul Robichaux)
- 1993-08-10 (Mon, 9 Aug 93 20:01:56 PDT) - Secure voice software issues - karn@qualcomm.com (Phil Karn)
- 1993-08-10 (Tue, 10 Aug 93 09:12:03 PDT) - Re: Secure voice software issues - paul@poboy.b17c.ingr.com (Paul Robichaux)
- 1993-08-11 (Wed, 11 Aug 93 12:16:59 PDT) - Secure voice software issues - karn@qualcomm.com (Phil Karn)
- 1993-08-11 (Wed, 11 Aug 93 01:56:52 PDT) - Re: Secure voice software issues - guy@theporch.raider.net (Jonathan Guy)
- 1993-08-11 (Wed, 11 Aug 93 14:22:05 PDT) - Secure voice software issues - karn@qualcomm.com (Phil Karn)
- 1993-08-11 (Wed, 11 Aug 93 15:17:31 PDT) - Re: Secure voice software issues - “Perry E. Metzger” <pmetzger@lehman.com>
- 1993-08-11 (Wed, 11 Aug 93 14:22:05 PDT) - Secure voice software issues - karn@qualcomm.com (Phil Karn)
- 1993-08-10 (Tue, 10 Aug 93 09:12:03 PDT) - Re: Secure voice software issues - paul@poboy.b17c.ingr.com (Paul Robichaux)
- 1993-08-10 (Mon, 9 Aug 93 20:01:56 PDT) - Secure voice software issues - karn@qualcomm.com (Phil Karn)
- 1993-08-10 (Mon, 9 Aug 93 18:41:52 PDT) - re: Secure voice software issues - paul@poboy.b17c.ingr.com (Paul Robichaux)