[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Better key negotiations

To: or-talk@xxxxxxxxxxxxx
Subject: Better key negotiations
From: Watson Ladd <watsonbladd@xxxxxxxxx>
Date: Mon, 12 Jun 2006 21:48:32 -0400
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Mon, 12 Jun 2006 21:48:43 -0400
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:mime-version:content-transfer-encoding:message-id:content-type:to:from:subject:date:x-pgp-agent:x-mailer; b=XgL5sKAktRYMMCA20pqqBRujRwagjRSx1j21rs4zMaxtqc5dZM6dsTUxm84mcso/sfIoFB0ZllVTT2wQ+2uZf6d7FwJrKLKFyA+aQG7VU9ncp65FnpzJ3v2ugpQc6YDV0tn3Hsu9NxM+VQNvsYmLl4ynFCBVU373/+87kE7Mj1A=
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

There exists a secure protocol(Diffie-Hellman) with 2 modular exponentiation operations for negotiating a key with no authentication. There exists a secure protocol(SPEKE, SRP, EKE..) with 2 exponentiations for negotiating a key with mutual authentication. Doesn't this suggest the existence of a 2 exponentiation protocol for authenticating only one side? Does one exist? It would be an improvement over what's now used with three exponentiations by the server.

Sincerely, Watson Ladd --- "Those who would give up Essential Liberty to purchase a little Temporary Safety deserve neither Liberty nor Safety." -- Benjamin Franklin

Attachment: PGP.sig
Description: This is a digitally signed message part

Prev by Author: Re: "SHTTPD": Windows web-server, light-weight, stand-alone and multi-platform (Unix, etc)
Next by Author: RE: Vidalia
Previous by thread: Re: Tor,security and web-usability
Next by thread: Re: Tor,security and web-usability - Sorry, now readable with line-breaks...
Index(es):
- Author
- Thread