[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Better key negotiations
- To: or-talk@xxxxxxxxxxxxx
- Subject: Better key negotiations
- From: Watson Ladd <watsonbladd@xxxxxxxxx>
- Date: Fri, 01 Sep 2006 20:45:22 -0400
- Delivered-to: archiver@seul.org
- Delivered-to: or-talk-outgoing@seul.org
- Delivered-to: or-talk@seul.org
- Delivery-date: Fri, 01 Sep 2006 20:45:36 -0400
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:user-agent:mime-version:to:subject:x-enigmail-version:openpgp:content-type:content-transfer-encoding; b=PLZcYo4ch6GiD7lWyN0WWJ/pbbhSs+NSIyH5tABZqIqPRrI1QHWjCH0o7VOVB3pnC9mQ/mNQYx1gKJc7O9JoR4i4cuf7JN8zv9gvtGoGkBFS3r2UQN1zgQ34WOyCPiFJOQJMC57cpiLuYb2+Why1+2gS2aZPQlDVG0HlkkAfuxo=
- Openpgp: url=http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x57C89443
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
- User-agent: Thunderbird 1.5.0.5 (Macintosh/20060719)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I have a good idea for key negotiations (NOTE:UNPUBLISHED). Here it is:
Let the server have a public key y=h^x mod p, p=2q+1, h=g^2, and private
key x^-1 mod q, or z. (g is a generator).
A client will send y^a and remember a.
A server will send back h^b and remember b.
The client will compute (h^b)^a.
The server will compute (y^a)^(bz).
We note that:
(y^a)^(bz)=h^(ax*bz)=h^(abxz)=h^(ab)=(h^b)^a, as z and x are
multiplicative inverses mod q.
We further note that this is just Diffie-Hellman if we replace y with
h^z, a with a*x, and z with 1, b with b. So this is secure if DDH holds.
I am not a cryptographer, so will someone please check this method. I
have not found it anywhere.
Thanks,
Watson Ladd
- --
They who would give up an essential liberty for temporary security,
deserve neither liberty or security
- --Benjamin Franklin
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFE+NQiGV+aWVfIlEMRAgx6AKCiYSQYxxHiHNQGE5bhPjLzDEyFOQCfX9yo
TFzDjqiMHX3DFZ+luWI7dpU=
=Y0dm
-----END PGP SIGNATURE-----