[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Public key crypto

Date: Fri, 10 Jan 1997 18:30:46 -0800 (PST)
From: davidk@ISI.EDU
Subject: Re: Public key crypto

Michael,

> Michael Dillon writes :
> 
> On Fri, 10 Jan 1997, Rick H. Wesson wrote:
> 
> > IMHO the IAHC and CORE should not premote the use of technology that
> > would be illegal for a registry and/or an individual to use. The technology
> > used to run the CORE db shold not incur any legal issues for its use.
> 
> This is why I proposed that the keys be generated by CORE. They would then
> be transmitted direct to the user who can include them in a transaction to
> validate that they have indeed authorized the transaction. This does not
> require the user to run any crypto software of any type and it does not
> require the user to exchange any encrypted information. The key is not
> encrypted information, merely a unique number that is generated with a
> cryptographic quality algorithm.

That is what I meant by a token mechanism. A simple random number
generator could be used as long as the CORE db doesn't store them in
clear text. Note that such mechanisms are not considered to be entirely
safe (messages could be read by third parties), but could be considered
safe enough for the purpose for what we need them. I would prefer real
real authentication if politically feasible though,

David K.
---

References:
- Re: Public key crypto
  - From: Michael Dillon <michael@memra.com>

Prev by Date: Re: Transfering a domain
Next by Date: Re: Public key crypto
Prev by thread: Re: Public key crypto
Next by thread: Re: Public Resource vs Private Ownership
Index(es):
- Date
- Thread