[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Diffie-Hellman (note by Hugo)

To: ho@cs.arizona.edu
Subject: Re: Diffie-Hellman (note by Hugo)
From: Phil Karn <karn@qualcomm.com>
Date: Tue, 13 Dec 1994 22:19:04 -0800
Cc: ipsec@ans.net
In-Reply-To: <199412140125.SAA03833@umbra.CS.Arizona.EDU> (message from Hilarie Orman on Tue, 13 Dec 1994 18:25:31 -0700)

>>  I don't really think the cost of Diffie-Hellman is all that
>>  intolerable.  I used it all last week on my not-blazingly-fast laptop.
>>  It took a few seconds each time, not so long to tempt me to bypass it.

>I'm concerned that this might cease to be true for hosts running applications
>that require connections to lots of different hosts.  Distributed system
>maintenance actions, for example.

Yes, but:

1) Such hosts generally have far more CPU horsepower than my laptop,
and

2) The precomputed stuff (the first DH exponentiation and the RSA
signing) can be shared across multiple security associations,
especially when they are being created rapidly, i.e., more often than
the normal background precomputation rate.

Again, if you "turn the knob" on the Photuris background key
generation rate all the way down, you essentially get SKIP's level of
performance. But unlike SKIP, *my* protocol goes all the way up to
11... :-)

Phil

References:

Re: Diffie-Hellman (note by Hugo)

From: Hilarie Orman <ho@cs.arizona.edu>

Prev by Date: Re: key management
Next by Date: Re: a comment/question on perfect forward secrecy
Prev by thread: Re: Diffie-Hellman (note by Hugo)
Next by thread: Re: Diffie-Hellman (note by Hugo)
Index(es):
- Main
- Thread