Re: Please kill preshared key.

["david chen" <ietf_davidchen@hotmail.com>]

Just for argument sake,
what if these pre-shared symmetric keys are from the DH keys that generated
off-line.
(no real exchnage but using the same process to get the key)
Although this is not DH key exchange's function,
it does achieve the same key quality...

It can be used as both authentication and encryption.
(the key is distributed through 'out-of-band' secured channel)

--- David

----- Original Message -----
From: "Henry Spencer" <henry@spsystems.net>
To: "david chen" <ietf_davidchen@hotmail.com>
Cc: <ipsec@lists.tislabs.com>
Sent: Saturday, December 08, 2001 11:39 PM
Subject: Re: Please kill preshared key.


> On Fri, 7 Dec 2001, david chen wrote:
> > > > What I infered is that
> > > > the pre-shared symmetric key can be used for both authentication and
> > > > encryption without key-exchange (KE) ...
> > > Your inference is incorrect.  That is not how today's IPSec PSK works.
> >
> > Agree,..
> > However, do you agree my statement make sense?
>
> Only if the preshared key is fairly high quality, which it often isn't.
> Using a poor key only for gateway authentication exposes you to
> impersonation attacks, but those are typically much more difficult to
> mount than eavesdropping attacks, which are the dominant failure mode with
> a poor encryption key.
>
>                                                           Henry Spencer
>                                                        henry@spsystems.net
>
>

---

References:

• Re: Please kill preshared key.
• From: Henry Spencer <henry@spsystems.net>

---

• Prev by Date: Re: Son-of-IKE Selection Criteria?
• Next by Date: comments on jfk and ikev2 drafts
• Prev by thread: Re: Please kill preshared key.
• Next by thread: RE: Please kill preshared key.
• Index(es):
  • Main
  • Thread