[11328] in cryptography@c2.net mail archive
Re: An authentication question
daemon@ATHENA.MIT.EDU (Matthew Byng-Maddick)
Mon Aug 5 23:12:48 2002
Date: Mon, 5 Aug 2002 23:21:03 +0100
From: Matthew Byng-Maddick <cryptography@lists.colondot.net>
To: cryptography@wasabisystems.com
In-Reply-To: <Pine.LNX.4.33L2.0208051637130.14143-100000@centaur.acm.jhu.edu>
Mail-Copies-To: never
On Mon, Aug 05, 2002 at 04:44:28PM -0400, Jack Lloyd wrote:
> In the second version, any random user (or script) could upload very large
> files, wasting your bandwidth, and also CPU time when you check the sig. Or
> lots and lots of really small files, which would swamp your CPU(s) trying
> to check 500 sigs a second (makes for a good DDOS).
public key operations are significantly faster than private key ones. So it
is far easier to check 500 sigs than to generate them in the first place.
MBM
--
Matthew Byng-Maddick <mbm@colondot.net> http://colondot.net/
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
