[148248] in cryptography@c2.net mail archive
Re: [Cryptography] Explaining PK to grandma
daemon@ATHENA.MIT.EDU (Nico Williams)
Mon Nov 25 16:58:49 2013
X-Original-To: cryptography@metzdowd.com
Date: Mon, 25 Nov 2013 10:11:40 -0600
From: Nico Williams <nico@cryptonector.com>
To: Ralf Senderek <crypto@senderek.ie>
In-Reply-To: <alpine.LFD.2.02.1311251311180.5107@laptop.kerry-linux.ie>
Cc: Cryptography <cryptography@metzdowd.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
On Mon, Nov 25, 2013 at 01:29:29PM +0100, Ralf Senderek wrote:
> On Mon, 25 Nov 2013, Nico Williams wrote:
> > [...]
>
> IMHO the analogy does not explain encryption, because grandma's
> vision will be a box that she locks with a key, that's familiar.
Sealing an envelope and dropping it into a mailbox is an analog for
encryption. It's a lousy one, I know, but we're not going to get
perfect off-line world analogs for crypto, and what we need are not so
much explanations of low-level details of crypto but high-level aspects
of security.
> But unless you can convince gandma that there is a box that you lock with
> one key and open with another, she hasn't understood anything about RSA.
>
> And the most difficult thing is still left to be explained: how does
> the key she has used to lock the first box get to the recipient?
That's not the right analogy. The recipient will only get the mail if
she addressed it correctly, and only they will be able to open the
envelope. This analogy covers even physical security aspects of crypto.
> At that point granny will be crying out for something simpler, and we
> have to tell her that we cannot make it simpler.
The thing that causes complexity is the unwieldiness of cryptographic
keys. If we could recall keys we'd not have passwords, and we wouldn't
have much need for PKI.
Nico
--
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
