1995-08-27 - Re: SSL trouble

Header Data

From: hallam@w3.org
To: cypherpunks@toad.com
Message Hash: 204ce34bad5f4a6342d4eee747b26a352ebfd44002b55730d6681fe66ca561b3
Message ID: <9508270319.AA26098@zorch.w3.org>
Reply To: <199508270132.VAA05017@interport.net>
UTC Datetime: 1995-08-27 03:20:53 UTC
Raw Date: Sat, 26 Aug 95 20:20:53 PDT

Raw message

From: hallam@w3.org
Date: Sat, 26 Aug 95 20:20:53 PDT
To: cypherpunks@toad.com
Subject: Re: SSL trouble
In-Reply-To: <199508270132.VAA05017@interport.net>
Message-ID: <9508270319.AA26098@zorch.w3.org>
MIME-Version: 1.0
Content-Type: text/plain



> I don't get it.  If the challenge is partly secret, how will I
>know if I crack the code?

You don't thats how we make sure that you can't crack the code and not tell 
everyone else.

The servers can be validated by using a standard bit commitment type affair.

Its a matter of principle, we should ensure that the key breaking service is not 
itself subject to cryptanalytic attacks.


One small point, cryptanalysis equipment is also covered by ITAR restrictions.


		Phill




Thread