[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Safety of pre-shared keys? (Re: Reliable delete notifies)

To: Andrew Krywaniuk <andrew.krywaniuk@alcatel.com>
Subject: RE: Safety of pre-shared keys? (Re: Reliable delete notifies)
From: Arne Ansper <arne@ats.cyber.ee>
Date: Wed, 25 Oct 2000 13:05:54 +0200 (Israel Standard Time)
cc: "'Chris Trobridge'" <CTrobridge@baltimore.com>, "'ipsec'" <ipsec@lists.tislabs.com>
In-Reply-To: <000b01c03deb$bd0c9060$d23e788a@andrewk3.ca.newbridge.com>
Sender: owner-ipsec@lists.tislabs.com



> The authenticity requirement is always equally or more difficult to satisfy
> than the confidentiality requirement so the point is moot.

I don't agree. One must have a write access to some data in order to break
its authenticity. In order to break it's confidentiality read access is
sufficient. Read access is usually much easier to gain than write access.

Examples: 

If one can snoop the network but not inject new packets, then he cannot
break authenticity but can break confidentiality.

If one can read swap file or /dev/kmem or backup tape then one can break
the confidentiality of running system. On the other hand one needs a write
access to running system to break the authenticity. 

The whole point of the Diffie-Hellman key exchange is to create
confidential communication channel using authentic communication channel.

Arne Ansper

Follow-Ups:

RE: Safety of pre-shared keys? (Re: Reliable delete notifies)

From: andrew.krywaniuk@alcatel.com

References:

RE: Safety of pre-shared keys? (Re: Reliable delete notifies)

From: "Andrew Krywaniuk" <andrew.krywaniuk@alcatel.com>

Prev by Date: I-D ACTION:draft-krovetz-umac-01.txt
Next by Date: RE: Safety of pre-shared keys? (Re: Reliable delete notifies)
Prev by thread: RE: Safety of pre-shared keys? (Re: Reliable delete notifies)
Next by thread: RE: Safety of pre-shared keys? (Re: Reliable delete notifies)
Index(es):
- Main
- Thread