[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: KISS for PKIX. (Was: RE:Asymmetric authentication

To: "Waters, Stephen" <Stephen.Waters@xxxxxxxxxxxxx>
Subject: RE: KISS for PKIX. (Was: RE:Asymmetric authentication
From: Stephen Kent <kent@xxxxxxx>
Date: Wed, 21 Jul 1999 10:38:24 -0400
Cc: ietf-pkix@xxxxxxx
In-reply-to: <>

Stephen and David,

There is another approach here, that I first heard suggested by Jeff
Schiller a number of years ago. One could remember a pass phrase and use it
as the seed for a PRNG, which then feeds into a key pair selection
algorithm, thus recreating one's private key, rather than storing it. It
occurs to me that some additonal entropy could be provided by a second seed
value, saved in encrypted form and decrypted with the pass phrase.  because
this second value would be random (preferavly from a non-deterministic
source) attempts to decrypt it do not yield quick confirmation of gusses.
Instead, one has to try to use the pair of values (the pass phrase guess
and the decrypted second seed), to genreate a key pair, and then check to
see if the result yields the public key for the user. This approach is
clearly much, much slower that just decrypting a stored key, but it allows
a greater degree of security vs. a stored private key encrypted with a
password, and makes offline guessing attacks more costly.  Also, because
one hash complete freedom in choosing the pass phrase, it should be easier
to remember than a string of words formed from the bit pattern of a private
key.

Just a thought,

Steve

References:
- RE: KISS for PKIX. (Was: RE:Asymmetric authentication
  - From: Waters, Stephen

Prev by Date: RE: KISS for PKIX. (Was: RE:Asymmetric authentication
Next by Date: RE: KISS for PKIX. (Was: RE:Asymmetric authentication
Previous by thread: RE: KISS for PKIX. (Was: RE:Asymmetric authentication
Next by thread: RE: KISS for PKIX. (Was: RE:Asymmetric authentication
Index(es):
- Date
- Thread