[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: comments on client auth

To: dpkemp@missi.ncsc.mil, spki@c2.org
Subject: Re: comments on client auth
From: Hal <hfinney@shell.portal.com>
Date: Thu, 20 Jun 1996 07:56:12 -0700
Sender: owner-spki@c2.org

From: dpkemp@missi.ncsc.mil (David P. Kemp)
> It would be unfortunate if two totally unrelated users shared, by
> chance, the same keying material.  It would be more unfortunate if one
> or the other of them discovered this fact.

What do you mean by "keying material"?  The public (and therefore
secret) keys?  If so, this is not a reasonable concern.  If someone
could by accident stumble onto someone else's secret keys, then your
system is not secure.

If it were actually possible to generate the same key as someone else by
accident, then we would have attackers who did nothing but generate keys
until they matched someone else's.  Then they would be in a position to
wreak havoc.  No centralized key registry could prevent this.

Hal Finney

Prev by Date: Re: comments on client auth
Next by Date: AUTH statements for common Internet cases
Next by thread: Re: SDSI name interpretation
Index(es):
- Main
- Thread