[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Proposal: Perfect forward SECURITY

To: ashar@osmosys.incog.com, amir@watson.ibm.com
Subject: Re: Proposal: Perfect forward SECURITY
From: ashar@osmosys.incog.com (Ashar Aziz)
Date: Tue, 3 Jan 1995 14:19:53 -0800
Cc: ipsec@ans.net

Amir,

It seems that I didn't properly understand your suggestion. I thought
you wanted to use SKIP to do an authenticated DH key-exchange, and then
use the last round's components to come up with the current round's
key.

It seems that this is not what you want. So, now I need to understand
your suggestion better than I do.

How do you propose to authenticate the DH key-exchange a) to begin
with and b) for each round thereafter. What kind of certified keys
exist, if any?

Rather than having me speculate what on what you intend, perhaps if 
you spell out the details, then we can have a more productive discussion
on both the goals and means of achieving those goals. This would
be in terms of certified keys, as well as message exchanges.

Thanks,
Ashar.

Prev by Date: Problem+fix in Zero Message Master Key update
Next by Date: Re: Problem+fix in Zero Message Master Key update
Prev by thread: Re: Proposal: Perfect forward SECURITY
Next by thread: Re: Proposal: Perfect forward SECURITY
Index(es):
- Main
- Thread