From: David Presotto <presotto@closedmind.org>
To: 9fans@cse.psu.edu
Subject: Re: [9fans] ISP filtering - update
Date: Fri, 26 Sep 2003 08:49:54 -0400 [thread overview]
Message-ID: <46016185506c42950346d712e2f1d96f@plan9.bell-labs.com> (raw)
In-Reply-To: <063c01c38427$b3339900$b9844051@insultant.net>
[-- Attachment #1: Type: text/plain, Size: 977 bytes --]
-> random1
<- random2, hmac(random1, shared key)
-> hmac(random2, shared key)
This is incredibly weak authenitcation (susceptible to main in the middle)
but works if all you're trying to do is keep out spammers who ar just
injecting messages from their home machines. They can't authenticate
without knowing the shared key.
The problem is always how many shared keys are there. You could have
one per pair of communicating individuals but then you need an introduction
protocol. You could have a trusted third party to automate that
introduction and you've essentially got plan 9's authentication protocol
(we mix with DES rather than a keyed hash but its pretty much the same).
Public keys have the advantage that the amount of cruft kept secret
is small, i.e., your own private key part and nothing else. You don't
need cert's per se. Just a place to get public keys that you trust.
That could be a place that just has to be kept secure, not secret.
[-- Attachment #2: Type: message/rfc822, Size: 2875 bytes --]
From: "boyd, rounin" <boyd@insultant.net>
To: <9fans@cse.psu.edu>
Subject: Re: [9fans] ISP filtering - update
Date: Fri, 26 Sep 2003 14:14:13 +0200
Message-ID: <063c01c38427$b3339900$b9844051@insultant.net>
> SMTP mostly comes from providers (ISP's) and not your friends (unless
> your friends happen to own ISP's).
yup, i'm thinking about a clever auth method based on a cryptographic hash:
- 'public key' is some random string
- shared secret is a shared string
- cat the two and hash them
i need to think about this more.
i don't care about encryption. i want authentication [ZKP]. reading
_network security_ i see the example is based on transforms on large
graphs.
the public key is a list of large [500 node] graphs while the private key
is the transform between randomly chosen graphs and an isomorphic
graph. as the doc says 'this is impracticle'.
then i started to think about graphs. now, what is the web?
this is all probably flawed, but i haven't given up yet. buddy, can you
spare a neuron?
next prev parent reply other threads:[~2003-09-26 12:49 UTC|newest]
Thread overview: 143+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-09-25 11:32 Aharon Robbins
2003-09-25 12:21 ` boyd, rounin
2003-09-25 13:42 ` ron minnich
2003-09-25 14:48 ` Jim Choate
2003-09-25 15:07 ` Lucio De Re
2003-09-25 15:34 ` Jim Choate
2003-09-25 16:41 ` Douglas A. Gwyn
2003-09-25 17:20 ` Jim Choate
2003-09-25 17:28 ` David Presotto
2003-09-25 17:37 ` Dan Cross
2003-09-25 18:12 ` ron minnich
2003-09-25 18:19 ` David Presotto
2003-09-25 18:25 ` Jim Choate
2003-09-25 18:29 ` ron minnich
2003-09-25 18:39 ` Jim Choate
2003-09-25 19:43 ` boyd, rounin
2003-09-25 18:51 ` mirtchov
2003-09-25 19:06 ` Jim Choate
2003-09-25 19:35 ` mirtchov
2003-09-26 10:16 ` Marcus Andersson
2003-09-25 19:48 ` boyd, rounin
2003-09-26 10:17 ` Marcus Andersson
2003-09-26 11:44 ` boyd, rounin
2003-09-25 18:37 ` Wes Kussmaul
2003-09-25 17:40 ` D. Brownlee
2003-09-25 17:47 ` Jim Choate
2003-09-26 2:03 ` Adrian Tritschler
2003-09-25 16:06 ` Wes Kussmaul
2003-09-25 17:21 ` Jim Choate
2003-09-25 17:26 ` Dan Cross
2003-09-25 17:45 ` Jim Choate
2003-09-25 18:05 ` Dan Cross
2003-09-25 18:05 ` mirtchov
2003-09-25 18:16 ` Jim Choate
2003-09-25 21:39 ` Derek Fawcus
2003-09-25 21:47 ` boyd, rounin
2003-09-25 21:56 ` Derek Fawcus
2003-09-25 22:08 ` boyd, rounin
2003-09-25 22:31 ` Derek Fawcus
2003-09-26 10:13 ` David Lukes
2003-09-25 19:59 ` boyd, rounin
2003-09-25 20:22 ` Wes Kussmaul
2003-09-25 20:38 ` boyd, rounin
2003-09-25 20:16 ` boyd, rounin
2003-09-25 20:45 ` Wes Kussmaul
2003-09-25 20:46 ` David Presotto
2003-09-25 21:25 ` boyd, rounin
2003-09-25 21:36 ` Derek Fawcus
2003-09-25 21:50 ` Andrew Simmons
2003-09-25 21:58 ` boyd, rounin
2003-09-25 22:10 ` Tristan Seligmann
2003-09-25 22:34 ` boyd, rounin
2003-09-25 22:19 ` Derek Fawcus
2003-09-25 22:37 ` boyd, rounin
2003-09-25 23:10 ` D. Brownlee
2003-09-25 23:21 ` Andrew Simmons
2003-09-26 0:01 ` boyd, rounin
2003-09-26 0:11 ` Derek Fawcus
2003-09-26 0:45 ` D. Brownlee
2003-09-25 22:32 ` ron minnich
2003-09-25 22:27 ` Dan Cross
2003-09-25 22:53 ` boyd, rounin
2003-09-26 4:33 ` Lucio De Re
2003-09-26 10:45 ` boyd, rounin
2003-09-26 12:07 ` David Presotto
2003-09-26 12:09 ` Lucio De Re
2003-09-26 12:21 ` David Presotto
2003-09-26 12:39 ` Lucio De Re
2003-09-26 12:58 ` David Presotto
2003-09-26 13:23 ` Lucio De Re
2003-09-26 13:33 ` David Presotto
2003-09-26 13:46 ` Lucio De Re
2003-09-26 14:01 ` David Presotto
2003-09-26 14:36 ` rog
2003-09-26 15:03 ` rog
2003-09-26 15:22 ` D. Brownlee
2003-09-26 19:41 ` boyd, rounin
2003-09-26 19:23 ` boyd, rounin
2003-09-26 20:00 ` David Presotto
2003-10-06 9:01 ` Ralph Corderoy
2003-10-06 9:22 ` boyd
2003-10-06 11:19 ` Ralph Corderoy
2003-10-06 18:09 ` boyd
2003-09-26 13:55 ` rog
2003-09-26 14:25 ` Lucio De Re
2003-09-26 19:38 ` boyd, rounin
2003-09-26 20:06 ` David Presotto
2003-09-26 16:50 ` Dan Cross
2003-09-26 20:31 ` boyd, rounin
2003-09-26 19:18 ` boyd, rounin
2003-09-26 19:44 ` David Presotto
2003-09-26 21:13 ` boyd, rounin
2003-09-27 6:01 ` Lucio De Re
2003-09-27 8:00 ` [9fans] PEM boyd, rounin
2003-09-27 9:43 ` Lucio De Re
2003-09-27 8:31 ` boyd, rounin
2003-09-27 8:02 ` [9fans] ISP filtering - update boyd, rounin
2003-09-27 10:15 ` Lucio De Re
2003-09-27 10:56 ` Geoff Collyer
2003-09-26 12:14 ` boyd, rounin
2003-09-26 12:49 ` David Presotto [this message]
2003-09-26 13:01 ` rog
2003-09-28 15:53 ` Tristan Seligmann
2003-09-26 13:02 ` boyd, rounin
2003-09-26 15:08 ` Wes Kussmaul
2003-09-29 9:11 ` Douglas A. Gwyn
2003-09-29 9:33 ` boyd
2003-09-25 17:19 ` Dan Cross
2003-09-25 17:32 ` Jim Choate
2003-09-25 17:30 ` Dan Cross
2003-09-25 17:48 ` Wes Kussmaul
2003-09-25 17:56 ` Jim Choate
2003-09-25 18:03 ` Wes Kussmaul
2003-09-25 18:10 ` Jim Choate
2003-09-25 18:08 ` Dan Cross
2003-09-25 18:21 ` Jim Choate
2003-09-25 18:26 ` Dan Cross
2003-09-25 18:37 ` Jim Choate
2003-09-25 18:31 ` Joel Salomon
2003-09-25 18:44 ` David Presotto
2003-09-25 19:46 ` boyd, rounin
2003-09-26 14:51 ` Joel Salomon
2003-09-25 19:32 ` boyd, rounin
2003-09-25 18:43 ` Wes Kussmaul
2003-09-25 19:05 ` Jim Choate
2003-09-26 17:32 ` Michael Jeffrey
2003-09-25 17:57 ` Joel Salomon
2003-09-25 18:23 ` Jim Choate
2003-09-25 18:46 ` David Presotto
2003-10-03 15:17 ` Ralph Corderoy
2003-09-25 23:30 Sven Lundquist
2003-09-26 13:09 David Presotto
2003-09-26 16:44 ` Dan Cross
2003-09-26 17:23 ` Wes Kussmaul
2003-09-26 17:31 ` David Presotto
2003-09-26 18:29 ` Wes Kussmaul
2003-09-26 18:51 ` Dan Cross
2003-09-26 17:33 ` David Presotto
2003-10-06 9:01 ` Ralph Corderoy
2003-10-06 12:55 ` David Presotto
2003-10-06 17:59 ` Christopher Nielsen
2003-09-26 14:49 Tiit Lankots
2003-09-26 19:49 ` boyd, rounin
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=46016185506c42950346d712e2f1d96f@plan9.bell-labs.com \
--to=presotto@closedmind.org \
--cc=9fans@cse.psu.edu \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).