1995-10-09 - Re: Certificate proposal
Header Data
From: m5@dev.tivoli.com (Mike McNally)
To: Hal <hfinney@shell.portal.com>
Message Hash: a11337405422b7e52c2a5109d5c5f25066f68a9c6ec8db6d39f475642000741f
Message ID: <9510091934.AA27962@alpha>
Reply To: <ac9ea8f3010210049f44@[205.199.118.202]>
UTC Datetime: 1995-10-09 19:35:35 UTC
Raw Date: Mon, 9 Oct 95 12:35:35 PDT
Raw message
From: m5@dev.tivoli.com (Mike McNally)
Date: Mon, 9 Oct 95 12:35:35 PDT
To: Hal <hfinney@shell.portal.com>
Subject: Re: Certificate proposal
In-Reply-To: <ac9ea8f3010210049f44@[205.199.118.202]>
Message-ID: <9510091934.AA27962@alpha>
MIME-Version: 1.0
Content-Type: text/plain
hfinney@shell.portal.com writes:
> OK, but again, what about the man in the middle attack? Suppose the
> key that you found that claims to be from Bob is actually not his, but
> another one created by a man in the middle, such as Bob's malicious
> ISP?
You have several alternative means of verifying the key:
1) You can meet Bob at a local Pizza Hut and verify the key in person.
2) You can go through a variety of channels to a variety of other
trusted entities and verify with them that they're using the same key
for Bob.
3) You can set up some sorts of communications tests to "probe" for a
MITM situation, perhaps by passing through "seeded" information (data
taggants?).
> I don't want to overstate the risk of this attack. It would not be an
> easy one to mount ... The risks of MITM attacks on public key
> systems was recognized not long after those systems were proposed. The
> problems with fake keys have been discussed for over a decade.
>
> Why is this all suddenly irrelevant?
I don't think it is irrelevant, I just think it's orthogonal to the
issue of whether a certificate for a key<-->entity relationship is
considered to be the key or an adjunct to the key. I could be wrong,
of course.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
| Nobody's going to listen to you if you just | Mike McNally (m5@tivoli.com) |
| stand there and flap your arms like a fish. | Tivoli Systems, Austin TX |
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thread
Return to October 1995
- Return to “aba@dcs.exeter.ac.uk”
- Return to “Adam Shostack <adam@homeport.org>”
- Return to “Bob Smart <smart@mel.dit.csiro.au>”
- Return to “Eli Brandt <eli@UX3.SP.CS.CMU.EDU>”
- Return to “Hal <hfinney@shell.portal.com>”
- Return to “m5@dev.tivoli.com (Mike McNally)”
- Return to “Mats Bergstrom <asgaard@sos.sll.se>”
- Return to “sameer <sameer@c2.org>”
- Return to “Scott Brickner <sjb@universe.digex.net>”
- Return to “sjb@universe.digex.net (Scott Brickner)”
Return to “tcmay@got.net (Timothy C. May)”
- 1995-10-09 (Mon, 9 Oct 95 10:28:50 PDT) - Re: Certificate proposal - tcmay@got.net (Timothy C. May)
- 1995-10-09 (Mon, 9 Oct 95 12:04:29 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 12:31:33 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
- 1995-10-09 (Mon, 9 Oct 95 13:40:11 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 16:03:45 PDT) - Re: Certificate proposal - Scott Brickner <sjb@universe.digex.net>
- 1995-10-09 (Mon, 9 Oct 95 16:07:03 PDT) - Re: Certificate proposal - Eli Brandt <eli@UX3.SP.CS.CMU.EDU>
- 1995-10-09 (Mon, 9 Oct 95 16:25:16 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-09 (Mon, 9 Oct 95 14:15:11 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-09 (Mon, 9 Oct 95 15:42:04 PDT) - Re: Certificate proposal - aba@dcs.exeter.ac.uk
- 1995-10-09 (Mon, 9 Oct 95 16:17:41 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-10 (Mon, 9 Oct 95 17:01:03 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
- 1995-10-10 (Mon, 9 Oct 95 17:02:51 PDT) - Re: Certificate proposal - Bob Smart <smart@mel.dit.csiro.au>
- 1995-10-10 (Tue, 10 Oct 95 07:20:09 PDT) - Re: Certificate proposal - Adam Shostack <adam@homeport.org>
- 1995-10-10 (Tue, 10 Oct 95 07:52:27 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-10 (Tue, 10 Oct 95 09:22:07 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 16:17:41 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 16:11:29 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-09 (Mon, 9 Oct 95 16:52:11 PDT) - Re: Certificate proposal - Scott Brickner <sjb@universe.digex.net>
- 1995-10-10 (Tue, 10 Oct 95 05:44:46 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-10 (Tue, 10 Oct 95 08:33:35 PDT) - Re: Certificate proposal - sjb@universe.digex.net (Scott Brickner)
- 1995-10-09 (Mon, 9 Oct 95 15:42:04 PDT) - Re: Certificate proposal - aba@dcs.exeter.ac.uk
- 1995-10-09 (Mon, 9 Oct 95 13:40:11 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 12:31:33 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
- 1995-10-09 (Mon, 9 Oct 95 12:35:35 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-09 (Mon, 9 Oct 95 13:55:12 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 14:40:16 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
- 1995-10-09 (Mon, 9 Oct 95 14:47:55 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
- 1995-10-11 (Tue, 10 Oct 95 17:53:10 PDT) - Re: Certificate proposal - Mats Bergstrom <asgaard@sos.sll.se>
- 1995-10-09 (Mon, 9 Oct 95 16:54:56 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
- 1995-10-09 (Mon, 9 Oct 95 12:04:29 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>