[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01

To: Pasi.Eronen@xxxxxxxxx
Subject: Re: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
From: "Dan Harkins" <dharkins@xxxxxxxxxx>
Date: Tue, 29 Jan 2008 10:52:27 -0800 (PST)
Cc: tls@xxxxxxxx
Importance: Normal
In-reply-to: <B356D8F434D20B40A8CEDAEC305A1F24052E8740@xxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <B356D8F434D20B40A8CEDAEC305A1F240511959C@xxxxxxxxxxxxxxxxxxxxxx> <87sl15pxnx.fsf@xxxxxxxxxxxxxxxxxxx> <B356D8F434D20B40A8CEDAEC305A1F24052E8740@xxxxxxxxxxxxxxxxxxxxxx>
User-agent: SquirrelMail/1.4.8

  Hi Pasi,

On Tue, January 29, 2008 4:51 am, Pasi.Eronen@xxxxxxxxx wrote:
> <not wearing any hats>
>
> Overall comment: While the technical solution is reasonably defined
> and scoped, do we have any evidence that someone cares about it?
> I.e., do we have information suggesting that if this was specified,
> it would actually be used in real world? If we don't, let's not
> spend WG time on it...

  Personally I would view a password-based authentication scheme that
assumes the shared key is a low-entropy one or is selected from a limited
set of keys, like a dictionary, as more useful to the real world. I
believe that is the predominant access method used in the Internet today.

  IEEE P1363.2 has a draft out describing password-based authentication
protocols using elliptic curves.

  While a password-based authentication scheme would be _more_ useful
I still think there's value in pursuing a PSK-based scheme using elliptic
curves. It's an efficient alternative to the existing PSK cipher suites
that use groups based on exponentiation modulus a large prime.

  Dan.

_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- RE: [TLS] password-based authentication (was: Some comments about draft-badra-ecdhe-tls-psk-01)
  - From: Pasi.Eronen

References:
- [TLS] ECDHE_PSK as WG item?
  - From: Pasi.Eronen
- [TLS] Re: ECDHE_PSK as WG item?
  - From: Simon Josefsson
- [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
  - From: Pasi.Eronen

Prev by Date: [TLS] shared secrets from passwords
Next by Date: Re: [TLS] shared secrets from passwords
Previous by thread: Re: [TLS] Some comments about draft-badra-ecdhe-tls-psk-01
Next by thread: RE: [TLS] password-based authentication (was: Some comments about draft-badra-ecdhe-tls-psk-01)
Index(es):
- Date
- Thread