[14474] in cryptography@c2.net mail archive
Re: anonymous DH & MITM
daemon@ATHENA.MIT.EDU (Taral)
Fri Oct 3 15:05:07 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Fri, 3 Oct 2003 14:00:36 -0500
From: Taral <taral@taral.net>
To: cryptography@metzdowd.com
In-Reply-To: <Pine.GSO.4.58.0310031351520.6880@frame>
--a8Wt8u1KmwUX3Y2C
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Fri, Oct 03, 2003 at 02:16:22PM -0400, Jerrold Leichter wrote:
> The Interlock Protocol doesn't provide this - it prevents the MITM from
> modifying the exchanged messages, but can't prevent him from reading them.
> It's not clear if it can be achieved at all. But it does make sense as a
> security spec.
Hardly. Just perform DH exchange over the interlock protocol. By your
own admission, the MITM could not change the factors being exchanged,
and by DH, the MITM cannot then know what the resulting key data is.
--=20
Taral <taral@taral.net>
This message is digitally signed. Please PGP encrypt mail to me.
"Be who you are and say what you feel, because those who mind don't
matter and those who matter don't mind." -- Dr. Seuss
--a8Wt8u1KmwUX3Y2C
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQE/fcdUtOVKlL8cHDcRAgvUAKCco5aGjzgPO/l+Y0FzdKkzbHt1DQCgjBrz
F/f3nL1vQ08mOzuEMn/wsRQ=
=5h+v
-----END PGP SIGNATURE-----
--a8Wt8u1KmwUX3Y2C--
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
