Xref: utzoo comp.protocols.tcp-ip:16708 alt.security:2722
Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!usc!apple!erc
From: erc@Apple.COM (Ed Carp)
Newsgroups: comp.protocols.tcp-ip,alt.security
Subject: Re: Authentication & Internet Protocol Suite
Message-ID: <14245@goofy.Apple.COM>
Date: 25 Jun 91 00:14:12 GMT
References: <29102.Jun1800.35.2891@kramden.acf.nyu.edu> <1991Jun18.142936.5962@murdoch.acc.Virginia.EDU> <1991Jun18.131044.1@ptavv.llnl.gov>
Distribution: inet
Organization: Apple Computer Inc., Cupertino, CA
Lines: 19


It seems that the whole issue revolves around the insupportability of secure
channels for the exchange of keys.  Typical problem: A wants to send B a
secure message, and he wants to make sure that only B can read it.  You have
to have a secure channel to exchange secrets so that you can agree on keys for
encryption.  No such secure channel exists.

Phil Karn's work with insecure login via packet radio has merit (time-slice),
but I'd rather see something akin to public key crypto.  I'd sure like a
piece of that software...:)
-- 
Ed Carp  N7EKG/6	erc@khijol.UUCP		...uunet!khijol!erc
Packet:  N7EKG @ N6IIU.#NOCAL.CA.US
UUWEST Consulting	Alameda, CA		415/814-0550

Computers HAVE caused a revolution in how much information we
can safely ignore!    --robs@ux1.cso.uiuc.edu (Rob Schaeffer)

-- Absolutely unabashed Gates McFadden groupie! --