[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: forward secrecy

To: Phil Karn <karn@qualcomm.com>, ashar@osmosys.incog.com
Subject: Re: forward secrecy
From: Robert Moskowitz <rgm3@is.chrysler.com>
Date: Tue, 19 Dec 1995 08:12:37 -0500
Cc: ipsec@ans.net

At 12:09 AM 12/19/95 -0800, Phil Karn wrote:
>
>Clearly, ephemeral DH exchanges would thwart these attacks. My
>philosophy: do DH with big enough exponents to thwart NSA for a very
>long time, AND redo it often enough to limit your exposure.  And if
>that's too much of a CPU burden, either tune up your exponentiation
>code or buy a bigger CPU.

I think Hilarie had it right " encrypt until it hurts, then back off a
little".  I would add, "just a little, maybe".

Robert Moskowitz
Chrysler Corporation
(810) 758-8212

Prev by Date: Re: forward secrecy
Next by Date: Re: ICMP Security Failures
Prev by thread: Re: forward secrecy
Next by thread: Re: forward secrecy
Index(es):
- Main
- Thread