Re: SOI: identity protection and DOS

[Derek Atkins <warlord@mit.edu>]

Sara,

Sara Bitan <sarab@cs.Technion.AC.IL> writes:

> I think pre-shared keys authentication is a requirement, and it doesn't
> necessary imply huge overhead. There are several good (and popular)

Do you mean pre-shared secret-key or pre-shared public-key?  I happen
to agree with Steve that pre-shared public-key is sufficient (and
probably superior) to pre-shared secret-key authentication.  In other
words, we pre-share RSA Public Keys.  No certificates are necessarily
required.  As was pointed out, see SSH for an example of how this
works.

-derek
-- 
       Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
       Member, MIT Student Information Processing Board  (SIPB)
       URL: http://web.mit.edu/warlord/    PP-ASEL-IA     N1NWH
       warlord@MIT.EDU                        PGP key available

---

Follow-Ups:

• Re: SOI: identity protection and DOS
• From: Ari Huttunen <Ari.Huttunen@f-secure.com>
• Re: SOI: identity protection and DOS
• From: Hugo Krawczyk <hugo@ee.technion.ac.il>
• Re: SOI: identity protection and DOS
• From: "david chen" <ietf_davidchen@hotmail.com>

References:

• Re: SOI: identity protection and DOS
• From: Derek Atkins <warlord@mit.edu>
• Re: SOI: identity protection and DOS
• From: Hugo Krawczyk <hugo@ee.technion.ac.il>
• Re: SOI: identity protection and DOS
• From: Michael Thomas <mat@cisco.com>
• Re: SOI: identity protection and DOS
• From: Sara Bitan <sarab@cs.Technion.AC.IL>

---

• Prev by Date: Re: IKEv2 and SIGMA
• Next by Date: Re: SOI: identity protection and DOS
• Prev by thread: Re: SOI: identity protection and DOS
• Next by thread: Re: SOI: identity protection and DOS
• Index(es):
  • Main
  • Thread