[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: SOI QUESTIONS: 2.6 Formal proofs of security

To: andrew.krywaniuk@alcatel.com
Subject: RE: SOI QUESTIONS: 2.6 Formal proofs of security
From: Paul Koning <pkoning@equallogic.com>
Date: Fri, 21 Jun 2002 17:59:04 -0400
Cc: grebus@fddimax.zk3.dec.com, ipsec@lists.tislabs.com
References: <200206202243.SAA0000020102@fddimax.zk3.dec.com><001001c2195e$12c955c0$1e72788a@ca.alcatel.com>
Sender: owner-ipsec@lists.tislabs.com

Excerpt of message (sent 21 June 2002) by Andrew Krywaniuk:
> For some flawed security protocols, the problem was that the authors didn't
> have any technically savvy people review them. A security proof might give
> you some confidence in those protocols by virtue of the fact that they had
> to hire/enlist an expert to write the security proof.

That's true for some flawed protocols.  Some were so flawed that it
only took knowledge at the level of Crypto 101 to spot the holes.

But what you say does not apply to all flawed protocols.  There's the
classic example of the initial Needham-Schroeder protocol, yet I don't
think many people would want to describe those two authors as "not
technically savvy".

	    paul

Follow-Ups:
- RE: SOI QUESTIONS: 2.6 Formal proofs of security
  - From: "Andrew Krywaniuk" <andrew.krywaniuk@alcatel.com>

References:
- Re: SOI QUESTIONS: 2.6 Formal proofs of security
  - From: Gary Grebus USG <grebus@fddimax.zk3.dec.com>
- RE: SOI QUESTIONS: 2.6 Formal proofs of security
  - From: "Andrew Krywaniuk" <andrew.krywaniuk@alcatel.com>

Prev by Date: Re: SOI QUESTIONS: 2.6 Formal proofs of security
Next by Date: Re: SOI QUESTIONS: 2.2 Perfect forward secrecy (PFS)
Prev by thread: RE: SOI QUESTIONS: 2.6 Formal proofs of security
Next by thread: RE: SOI QUESTIONS: 2.6 Formal proofs of security
Index(es):
- Date
- Thread