[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: key management

To: pkarger@gte.com
Subject: Re: key management
From: "Perry E. Metzger" <perry@imsi.com>
Date: Tue, 13 Dec 1994 16:18:05 -0500
Cc: atkinson@itd.nrl.navy.mil, ipsec@ans.net
In-Reply-To: Your message of "Tue, 13 Dec 1994 15:31:22 EST." <9412132031.AA16359@pkarger.tcc>
Reply-To: perry@imsi.com


"Paul A. Karger" says:
> The point is that mutual suspicion on a single host is an operating system
> issue - not a cryptographic protocol issue.

That is untrue. If multiple users share the same key, and they have
access to their own keys, they can trivially read each others
traffic. If they don't have access to their own keys, they can still
cause each other significant pain and suffering. Chosen plaintext
attacks that heretofore seemed absurd become trivial. It becomes
neccessary to trust the remote host rather than trusting that the
remote host is in possession of a user based authenticator. Attacks
against other users communications can be attempted based on the fact
that the users share the same SAIDs. There is more. Perhaps a paper on
the subject would be a good idea. In any case, however, forcing
different users to use the same SAID is not acceptable.

Perry

Follow-Ups:

Re: key management

From: "Paul A. Karger" <pak0@gte.com>

References:

Re: key management

From: "Paul A. Karger" <pak0@gte.com>

Prev by Date: Proposal: Perfect forward secrecy a MUST
Next by Date: Re: key management
Prev by thread: Re: key management
Next by thread: Re: key management
Index(es):
- Main
- Thread