[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: key management

To: "Avi Rubin" <rubin@faline.bellcore.com>
Subject: Re: key management
From: "Paul A. Karger" <pak0@gte.com>
Date: Tue, 13 Dec 94 14:12:44 -0500
Cc: perry@imsi.com, ipsec@ans.net
Fax: +1 (617) 890-9320
In-Reply-To: Your message of "Tue, 13 Dec 94 13:15:28 EST." <199412131815.NAA15827@faline.bellcore.com>
Organization: GTE Laboratories
Phone: +1 (617) 466-3844
Reply-To: pkarger@gte.com


> To: perry@imsi.com
> Cc: ipsec@ans.net
> Subject: Re: key management 
> In-Reply-To: Your message of Tue, 13 Dec 1994 11:13:59 -0500.
>              <9412131613.AA12283@snark.imsi.com> 
> Date: Tue, 13 Dec 1994 13:15:28 -0500
> From: "Avi Rubin" <rubin@faline.bellcore.com>
> 
> 
> 
> >
> >2) Mutually distrustful users on a single host CANNOT be trusted to
> >know each others keys. Systems that use host keying conflate
> >different users cryptographic keys, making all sorts of unfortunate
> >attacks possible. Preventing seperate users from using each others
> >keys is necessary.
> 
> How do you propose for mutually suspicious users to use
> the same host? 
> 

Mutually suspicious users can only share the same host if you
have a trusted operating system of some kind to separate them.

Follow-Ups:

Re: key management

From: "Perry E. Metzger" <perry@imsi.com>

References:

Re: key management

From: "Avi Rubin" <rubin@faline.bellcore.com>

Prev by Date: Re: key management
Next by Date: Re: key management
Prev by thread: Re: key management
Next by thread: Re: key management
Index(es):
- Main
- Thread