[11333] in cryptography@c2.net mail archive
Re: An authentication question
daemon@ATHENA.MIT.EDU (Jack Lloyd)
Tue Aug 6 00:37:52 2002
Date: Tue, 6 Aug 2002 00:26:55 -0400 (EDT)
From: Jack Lloyd <lloyd@acm.jhu.edu>
To: Matthew Byng-Maddick <cryptography@lists.colondot.net>
Cc: <cryptography@wasabisystems.com>
In-Reply-To: <20020805222103.GB34063@colon.colondot.net>
On Mon, 5 Aug 2002, Matthew Byng-Maddick wrote:
> On Mon, Aug 05, 2002 at 04:44:28PM -0400, Jack Lloyd wrote:
> > In the second version, any random user (or script) could upload very large
> > files, wasting your bandwidth, and also CPU time when you check the sig. Or
> > lots and lots of really small files, which would swamp your CPU(s) trying
> > to check 500 sigs a second (makes for a good DDOS).
>
> public key operations are significantly faster than private key ones. So it
> is far easier to check 500 sigs than to generate them in the first place.
Depending on the algorithm. RSA yes. DSA no.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
