[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: key management

To: pkarger@gte.com
Subject: Re: key management
From: Ran Atkinson <atkinson@sundance.itd.nrl.navy.mil>
Date: Tue, 13 Dec 1994 15:34:53 -0500
Cc: ipsec@ans.net
In-Reply-To: "Paul A. Karger" <pak0@gte.com> "Re: key management" (Dec 13, 15:31)
References: <9412132031.AA16359@pkarger.tcc>
Reply-To: atkinson@itd.nrl.navy.mil
Sender: atkinson@sundance.itd.nrl.navy.mil

On Dec 13, 15:31, Paul A. Karger wrote:
} Subject: Re: key management

% The point is that mutual suspicion on a single host is an operating
% system  issue - not a cryptographic protocol issue.

Yes for a single host.

However, once one has networked hosts then one must also consider
using cryptographic mechanisms to maintain per-user separation for
data in transit between the networked systems.  If one lacks such
separation on networked hosts, then it is not feasible to provide
per-user separation of data on the hosts themselves because the data
might be compromised whilst transiting the network.  It is the latter
problem that is being discussed in the context of IPv4 and IPv6
security.

Regards,

Ran
atkinson@itd.nrl.navy.mil

References:

Re: key management

From: "Paul A. Karger" <pak0@gte.com>

Prev by Date: Re: key management
Next by Date: Re: Diffie-Hellman
Prev by thread: Re: key management
Next by thread: Re: key management
Index(es):
- Main
- Thread