1995-10-31 - Re: Keyed-MD5, ITAR, and HTTP-NG

Header Data

From: hallam@w3.org
To: cypherpunks@toad.com
Message Hash: 133f00c4af58cee6008dcde62da4c282111bf13ac684b3707b7d94fa2336687c
Message ID: <9510312015.AA00768@zorch.w3.org>
Reply To: <199510312331.SAA03949@jekyll.piermont.com>
UTC Datetime: 1995-10-31 21:45:06 UTC
Raw Date: Wed, 1 Nov 1995 05:45:06 +0800

Raw message

From: hallam@w3.org
Date: Wed, 1 Nov 1995 05:45:06 +0800
To: cypherpunks@toad.com
Subject: Re: Keyed-MD5, ITAR, and HTTP-NG
In-Reply-To: <199510312331.SAA03949@jekyll.piermont.com>
Message-ID: <9510312015.AA00768@zorch.w3.org>
MIME-Version: 1.0
Content-Type: text/plain



>A keyed version of MD5 is the base authentication mechanism in IPSP
>and it has been heavily examined by a number of very good
>cryptographers.

Yes we reviewed it and said that it sucked.

Phil wrote a note to Ron and Ron sent in a series of comments. I suggested that
the idea of a keyed digest be stated as a separate concept from a hash function.
Functions of one variable are intrinsically different from functions of two 
variables.

The sequence of events I heard was that they asked Burt Kaliski for a suggestion,
he gave them one and they chose something different.

	
>Isn't this what the GSS-API is about?  Couldn't HTTP-NG just convey GSS
>"tokens", and do something about getting both sides to agree on which GSS
>"mechanism" is to be used, and on what Principals are involved?

GSS is often brought up on occasions like this. I have never seen an architectural
overview of what it is trying to achieve for me or how. When I am provided 
with a clear definition of what it is I hope to arrive at a clear explanation 
of why I'm not using it. Unfortunately the RFC process strips the rationale
part out of the specs. 


		Phill

Thread

• Return to October 1995

• Return to November 1995

• Return to “Doug Hughes <Doug.Hughes@Eng.Auburn.EDU>”
• Return to “futplex@pseudonym.com (Futplex)”
• Return to “hallam@w3.org”
• Return to “James Black <black@eng.usf.edu>”
• Return to “James Black <black@sunflash.eng.usf.edu>”
• Return to “Kevin L Prigge <klp@gold.tc.umn.edu>”
• Return to “michael shiplett <walrus@ans.net>”
• Return to ““Perry E. Metzger” <perry@piermont.com>”
• Return to “Rich Graves <llurch@networking.stanford.edu>”

• Return to “Simon Spero <ses@tipper.oit.unc.edu>”

• 1995-10-30 (Tue, 31 Oct 1995 02:46:42 +0800) - Keyed-MD5, ITAR, and HTTP-NG - Simon Spero <ses@tipper.oit.unc.edu>
  • 1995-10-30 (Tue, 31 Oct 1995 03:40:01 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - James Black <black@sunflash.eng.usf.edu>
    • 1995-10-31 (Tue, 31 Oct 1995 09:14:59 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - Doug Hughes <Doug.Hughes@Eng.Auburn.EDU>
      • 1995-10-31 (Tue, 31 Oct 1995 10:17:33 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - Rich Graves <llurch@networking.stanford.edu>
        • 1995-10-31 (Tue, 31 Oct 1995 10:30:26 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - James Black <black@eng.usf.edu>
      • 1995-10-31 (Tue, 31 Oct 1995 15:05:54 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - Kevin L Prigge <klp@gold.tc.umn.edu>
        • 1995-10-31 (Wed, 1 Nov 1995 07:48:45 +0800) - PGP On shared machines (was Re: Keyed-MD5, ITAR, and HTTP-NG) - Simon Spero <ses@tipper.oit.unc.edu>
  • 1995-10-30 (Tue, 31 Oct 1995 05:27:28 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - futplex@pseudonym.com (Futplex)
  • 1995-11-02 (Thu, 2 Nov 1995 09:28:57 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - hallam@w3.org
    • 1995-10-31 (Tue, 31 Oct 1995 10:21:14 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - Simon Spero <ses@tipper.oit.unc.edu>
    • 1995-10-31 (Wed, 1 Nov 1995 02:12:43 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - michael shiplett <walrus@ans.net>
    • 1995-10-31 (Wed, 1 Nov 1995 04:42:06 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - “Perry E. Metzger” <perry@piermont.com>
      • 1995-10-31 (Wed, 1 Nov 1995 05:45:06 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - hallam@w3.org
        • 1995-11-01 (Wed, 1 Nov 1995 22:25:17 +0800) - Re: Keyed-MD5, ITAR, and HTTP-NG - “Perry E. Metzger” <perry@piermont.com>