Re: On shared keys (was RE: SOI: identity protection and DOS)

[Derek Atkins <warlord@mit.edu>]

Michael Thomas <mat@cisco.com> writes:

> I don't think I agree if by Internet-wide you mean
> any-any scaling. I frankly don't think that such a
> thing exists, or is likely to exist. Thus while PK
> exchanges give many useful properties, enrollment,
> compromise, and administration are still problems
> for both. Indeed, the only thing in existence
> right now that scales to any appreciable degree is
> *not* based on asymmetric keys (GSM). It seems to
> scale well enough for its application and
> acceptible risk parameters.

Except that keys are transmitted between "countries" in clear-text...

> 		Mike

-derek

-- 
       Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
       Member, MIT Student Information Processing Board  (SIPB)
       URL: http://web.mit.edu/warlord/    PP-ASEL-IA     N1NWH
       warlord@MIT.EDU                        PGP key available

---

Follow-Ups:

• Re: On shared keys (was RE: SOI: identity protection and DOS)
• From: Michael Thomas <mat@cisco.com>

References:

• RE: SOI: identity protection and DOS
• From: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>
• On shared keys (was RE: SOI: identity protection and DOS)
• From: Hugo Krawczyk <hugo@ee.technion.ac.il>
• On shared keys (was RE: SOI: identity protection and DOS)
• From: Michael Thomas <mat@cisco.com>

---

• Prev by Date: Re: On shared keys
• Next by Date: Updated ID: draft-touch-ipsec-vpn-02.txt
• Prev by thread: On shared keys (was RE: SOI: identity protection and DOS)
• Next by thread: Re: On shared keys (was RE: SOI: identity protection and DOS)
• Index(es):
  • Main
  • Thread