[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: KISS for PKIX. (Was: RE:Asymmetric authentication

To: "Waters, Stephen" <Stephen.Waters@xxxxxxxxxxxxx>
Subject: RE: KISS for PKIX. (Was: RE:Asymmetric authentication
From: Stephen Kent <kent@xxxxxxx>
Date: Thu, 22 Jul 1999 09:50:48 -0400
Cc: ietf-pkix@xxxxxxx
In-reply-to: <>

Steve,

>I think we should make things as hard as possible to access the private
>authentication information, but this approach doesn't (unless I
>misunderstand) offer a way to engage the central site.  It may take me
>longer, but I can still crack the sole authentication method 'off-line'.

Yes, if the public key is publically available, as would usualy be the case
for a cert-based system, this approach only increases the work factor
lineraly, as David pointed out.

Steve

References:
- RE: KISS for PKIX. (Was: RE:Asymmetric authentication
  - From: Waters, Stephen

Prev by Date: EESSI Final report
Next by Date: Re: Common misconceptions, was Re: KISS for PKIX. (Was: RE: ASN.1vs XML (used to be RE: I-D ACTION :draft-ietf-pkix-scvp- 00.txt))
Previous by thread: RE: KISS for PKIX. (Was: RE:Asymmetric authentication
Next by thread: EESSI Final report
Index(es):
- Date
- Thread