[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SOI: preshared

To: IP Security List <ipsec@lists.tislabs.com>
Subject: Re: SOI: preshared
From: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>
Date: Mon, 19 Nov 2001 13:29:16 -0800
In-Reply-To: <15353.24948.198728.631259@thomasm-u1.cisco.com>
References: <15353.11388.281025.686412@thomasm-u1.cisco.com><Pine.BSI.3.91.1011119130123.6158E-100000@spsystems.net><15353.24948.198728.631259@thomasm-u1.cisco.com>
Sender: owner-ipsec@lists.tislabs.com

At 11:45 AM -0800 11/19/01, Michael Thomas wrote:
>The consequence of using naked public keys in lieu
>of symmetric keys is that you incur the cost of
>both a DH and a RSA operation. You could
>conceivably get rid of the DH if you don't care
>about identity, but for preshared keys it seems
>questionable why you'd want to do _either_.

It doesn't have to be a bare public key. A self-signed cert has other 
signed attributes in it, such as the key validity date and an 
identity. The recipient simply needs to pull the public key out of 
the cert to check that key against its set of trusted public keys. 
(One doesn't need to trust this as a root cert: it is easy to make a 
policy of "if I get a self-signed cert as an identifier, I won't do 
any chaining, even if the cert says chaining is OK").

Using self-signed certs is the method that JFK currently uses to 
allow simple trust between two parties without needing a PKI. There 
is no shared-secret mode.

--Paul Hoffman, Director
--VPN Consortium

Follow-Ups:

Re: SOI: preshared

From: Michael Thomas <mat@cisco.com>

References:

SOI: preshared

From: Michael Thomas <mat@cisco.com>

Re: SOI: preshared

From: Henry Spencer <henry@spsystems.net>

Re: SOI: preshared

From: Michael Thomas <mat@cisco.com>

Prev by Date: Re: ipsec in tunnel mode and dynamic routing
Next by Date: Re: ipsec in tunnel mode and dynamic routing
Prev by thread: Re: SOI: preshared
Next by thread: Re: SOI: preshared
Index(es):
- Main
- Thread