[359] in cryptography@c2.net mail archive
Re: Digital Signatures without PKCS
daemon@ATHENA.MIT.EDU (Bill Stewart)
Sun Mar 16 20:34:10 1997
Date: Sun, 16 Mar 1997 16:55:06 -0800
To: Adam Shostack <adam@homeport.org>
From: Bill Stewart <stewarts@ix.netcom.com>
Cc: perry@piermont.com, ponder@freenet.tlh.fl.us, cryptography@c2.net
In-Reply-To: <199703160443.XAA18852@homeport.org>
At 11:43 PM 3/15/97 -0500, Adam Shostack wrote:
>I agree with Perry on this one. Any system that uses a keyed hash
>fails to provide non-repudiation, unless you create a TTP to be the
>verifier of all signatures. That TTP would be a fat target for a
>vareity of attacks, technical and otherwise.
So would the communications between any user and the TTP ...
Keyed hashes are useful for session continuity, but don't really
extend well outside that arena.
# Thanks; Bill
# Bill Stewart, +1-415-442-2215 stewarts@ix.netcom.com
# You can get PGP outside the US at ftp.ox.ac.uk/pub/crypto/pgp
# (If this is a mailing list, please Cc: me on replies. Thanks.)
