1995-01-31 - Re: ESP Unix encrypted session protocol software
Header Data
From: Alan Barrett <barrett@daisy.ee.und.ac.za>
To: “Perry E. Metzger” <perry@imsi.com>
Message Hash: d3ce194c9f81ed14e0b869fdd7834e8c4118acf44109fda9e52d86dfef9dc485
Message ID: <Pine.NEB.3.91.950131094454.21652n-100000@daisy.ee.und.ac.za>
Reply To: <9501302104.AA24274@snark.imsi.com>
UTC Datetime: 1995-01-31 07:56:13 UTC
Raw Date: Mon, 30 Jan 95 23:56:13 PST
Raw message
From: Alan Barrett <barrett@daisy.ee.und.ac.za>
Date: Mon, 30 Jan 95 23:56:13 PST
To: "Perry E. Metzger" <perry@imsi.com>
Subject: Re: ESP Unix encrypted session protocol software
In-Reply-To: <9501302104.AA24274@snark.imsi.com>
Message-ID: <Pine.NEB.3.91.950131094454.21652n-100000@daisy.ee.und.ac.za>
MIME-Version: 1.0
Content-Type: text/plain
> > Right - using DH exchange is probably appropriate in situations where
> > there is no pre-established credentials for the party on the other
> > machine.
>
> D-H also provides perfect forward secrecy, which is a reason to use it
> even if there is already an established set of credentials.
How about public-key signing the D-H exchange? Public key to eliminate[*]
the man-in-the-middle attack, and D-H for forward secrecy.
* Almost eliminate. A sufficiently powerful man in the middle could
conceivably subvert the public keys.
--apb (Alan Barrett)
Thread
- Return to January 1995
Return to February 1995
- Return to “Alan Barrett <barrett@daisy.ee.und.ac.za>”
- Return to “eric@remailer.net (Eric Hughes)”
- Return to “Matt Blaze <mab@research.att.com>”
- Return to ““Perry E. Metzger” <perry@imsi.com>”
Return to “Thomas Grant Edwards <tedwards@src.umd.edu>”
- 1995-01-30 (Mon, 30 Jan 95 08:01:55 PST) - ESP Unix encrypted session protocol software - Matt Blaze <mab@research.att.com>
- 1995-01-30 (Mon, 30 Jan 95 09:06:17 PST) - Re: ESP Unix encrypted session protocol software - Alan Barrett <barrett@daisy.ee.und.ac.za>
- 1995-01-30 (Mon, 30 Jan 95 09:42:48 PST) - Re: ESP Unix encrypted session protocol software - Thomas Grant Edwards <tedwards@src.umd.edu>
- 1995-01-30 (Mon, 30 Jan 95 10:07:52 PST) - Re: ESP Unix encrypted session protocol software - Matt Blaze <mab@research.att.com>
- 1995-01-30 (Mon, 30 Jan 95 11:23:32 PST) - Re: ESP Unix encrypted session protocol software - Thomas Grant Edwards <tedwards@src.umd.edu>
- 1995-01-30 (Mon, 30 Jan 95 13:05:57 PST) - Re: ESP Unix encrypted session protocol software - “Perry E. Metzger” <perry@imsi.com>
- 1995-01-31 (Mon, 30 Jan 95 23:56:13 PST) - Re: ESP Unix encrypted session protocol software - Alan Barrett <barrett@daisy.ee.und.ac.za>
- 1995-01-30 (Mon, 30 Jan 95 13:05:57 PST) - Re: ESP Unix encrypted session protocol software - “Perry E. Metzger” <perry@imsi.com>
- 1995-02-01 (Tue, 31 Jan 95 21:29:07 PST) - Re: ESP Unix encrypted session protocol software - eric@remailer.net (Eric Hughes)
- 1995-02-01 (Tue, 31 Jan 95 23:49:33 PST) - Re: ESP Unix encrypted session protocol software - Thomas Grant Edwards <tedwards@src.umd.edu>
- 1995-02-01 (Wed, 1 Feb 95 08:58:07 PST) - Re: ESP Unix encrypted session protocol software - eric@remailer.net (Eric Hughes)
- 1995-02-01 (Tue, 31 Jan 95 23:49:33 PST) - Re: ESP Unix encrypted session protocol software - Thomas Grant Edwards <tedwards@src.umd.edu>
- 1995-01-30 (Mon, 30 Jan 95 11:23:32 PST) - Re: ESP Unix encrypted session protocol software - Thomas Grant Edwards <tedwards@src.umd.edu>
- 1995-01-30 (Mon, 30 Jan 95 10:07:52 PST) - Re: ESP Unix encrypted session protocol software - Matt Blaze <mab@research.att.com>