[4130] in cryptography@c2.net mail archive
Re: strong authentication without strong crypto?
daemon@ATHENA.MIT.EDU (lcs Mixmaster Remailer)
Thu Feb 4 21:21:13 1999
Date: 5 Feb 1999 02:00:03 -0000
To: cryptography@c2.net
From: lcs Mixmaster Remailer <mix@anon.lcs.mit.edu>
> Quick question: does anyone know of technology or techniques that would
> facilitate strong authentication (_not_ encryption) for unattended high
> volume electronic transactions and does not require strong crypto along
> the lines of DSA or RSA? Shared secrets are not an option.
There are strong identification protocols, most of which are
mathematically related to RSA and DSA, but which are for identification
rather than encryption or signature. Schneier devotes chapter 21 to
discussing several of these. Most of the ID protocols are closely
related to signature schemes, but if you have a political need to say
that you aren't doing signatures, these might fill the bill.
