[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: pre-shared key v RSA encryption or RSA signature authentication modes

To: Derek Atkins <warlord@mit.edu>, Uri Blumenthal <uri@lucent.com>
Subject: Re: pre-shared key v RSA encryption or RSA signature authentication modes
From: David Jablon <dpj@theworld.com>
Date: Thu, 21 Mar 2002 12:14:40 -0500
Cc: "Prof. Ahmed A. A. Adas" <alaadas@kaau.edu.sa>, cdemar@ebsdr.com, ipsec@lists.tislabs.com
In-Reply-To: <sjmvgbp3mec.fsf@kikki.mit.edu>
References: <3C9A0555.F8F7354A@lucent.com><TFSFRNDS@ebsdr.com><000701c1d0d9$cf43eb20$4969fea9@amanda2><3C9A0555.F8F7354A@lucent.com>
Sender: owner-ipsec@lists.tislabs.com

Derek,

Is the limited entropy of the shared secret due to the fact that
it is simply a hash of a password?  If so, then perhaps the current
simplistic shared-secret key protocol is not such a good fit for these
common shared-secret password applications.

-- David

At 11:39 AM 3/21/2002 -0500, Derek Atkins wrote:
>The fact that most users wont have a shared secret with 256 bits of
>entropy?  I suspect that most shared secrets are probably in the 64-80
>bits of entropy at the highest, and probably much lower than that.

Follow-Ups:
- Re: pre-shared key v RSA encryption or RSA signature authentication modes
  - From: Derek Atkins <warlord@mit.edu>

References:
- Re: pre-shared key v RSA encryption or RSA signature authentication modes
  - From: Uri Blumenthal <uri@lucent.com>
- pre-shared key v RSA encryption or RSA signature authentication modes
  - From: cdemar@ebsdr.com
- Re: pre-shared key v RSA encryption or RSA signature authentication modes
  - From: "Prof. Ahmed A. A. Adas" <alaadas@kaau.edu.sa>
- Re: pre-shared key v RSA encryption or RSA signature authentication modes
  - From: Derek Atkins <warlord@mit.edu>

Prev by Date: Re: pre-shared key v RSA encryption or RSA signature authentication modes
Next by Date: Re: pre-shared key v RSA encryption or RSA signature authentication modes
Prev by thread: RE: pre-shared key v RSA encryption or RSA signature authentication modes
Next by thread: Re: pre-shared key v RSA encryption or RSA signature authentication modes
Index(es):
- Date
- Thread