From: hallam@w3.org
To: cypherpunks@toad.com
Message Hash: 204ce34bad5f4a6342d4eee747b26a352ebfd44002b55730d6681fe66ca561b3
Message ID: <9508270319.AA26098@zorch.w3.org>
Reply To: <199508270132.VAA05017@interport.net>
UTC Datetime: 1995-08-27 03:20:53 UTC
Raw Date: Sat, 26 Aug 95 20:20:53 PDT
From: hallam@w3.org
Date: Sat, 26 Aug 95 20:20:53 PDT
To: cypherpunks@toad.com
Subject: Re: SSL trouble
In-Reply-To: <199508270132.VAA05017@interport.net>
Message-ID: <9508270319.AA26098@zorch.w3.org>
MIME-Version: 1.0
Content-Type: text/plain
> I don't get it. If the challenge is partly secret, how will I
>know if I crack the code?
You don't thats how we make sure that you can't crack the code and not tell
everyone else.
The servers can be validated by using a standard bit commitment type affair.
Its a matter of principle, we should ensure that the key breaking service is not
itself subject to cryptanalytic attacks.
One small point, cryptanalysis equipment is also covered by ITAR restrictions.
Phill
Return to August 1995
Return to “Will French <wfrench@interport.net>”