[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: DES <weak> key list?

To: Steven Bellovin <smb@research.att.com>
Subject: Re: DES <weak> key list?
From: Bill Sommerfeld <sommerfeld@apollo.hp.com>
Date: Wed, 10 Sep 1997 14:24:59 -0400
Cc: "Michael C. Richardson" <mcr@sandelman.ottawa.on.ca>, ipsec@tis.com
In-Reply-To: smb's message of Wed, 10 Sep 1997 10:37:17 -0400. <199709101437.KAA09123@postal.research.att.com>
Sender: owner-ipsec@ex.tis.com

> I confess that I'm not worried about the possibility of a weak key being
> chosen at random.  

Indeed, from a pure software engineering perspective, I'm more
concerned about the reliability of code for weak key avoidance which
*could*, but probably won't ever be run in production.

How the heck are you going to tweak implementations such that you can
actually *test* the interoperability of the recovery-from-weak-key
code paths??

						- Bill

References:

Re: DES <weak> key list?

From: Steven Bellovin <smb@research.att.com>

Prev by Date: Re: Re[2]: Vendors who are implementing IPSEC, step forward....
Next by Date: Re: DES <weak> key list?
Prev by thread: Re: DES <weak> key list?
Next by thread: Re: DES <weak> key list?
Index(es):
- Main
- Thread