Re: cgd and remote keys

To: Gavan Fantom <gavan%coolfactor.org@localhost>
Subject: Re: cgd and remote keys
From: Curt Sampson <cjs%starling-software.com@localhost>
Date: Sat, 12 Jan 2008 13:38:55 +0900

On 2008-01-05 15:08 +0000 (Sat), Gavan Fantom wrote:

> These things should all have secure protocols for communication,
> especially the bluetooth and IP solutions. Authentication should
> be two-way (and not just based on IP / MAC address) and should be
> resistant to replay attacks. It should also be as resistant as
> possible to somebody obtaining the server as well as the client.

I may be wrong about this, but it seems to me that simply splitting the
key material between the server and client, with each holding only a
part of it, would make all of these precautions needless, or at least
very much less useful.

cjs
-- 
Curt Sampson       <cjs%starling-software.com@localhost>        +81 90 7737 
2974   
Mobile sites and software consulting: http://www.starling-software.com

References:
- Re: cgd and remote keys
  - From: Cem Kayali
- Re: cgd and remote keys
  - From: Martin J. Laubach
- Re: cgd and remote keys
  - From: Gavan Fantom

Prev by Date: Re: cgd and remote keys
Next by Date: Re: enforcing RLIMIT_NPROC in setuid() ?
Previous by Thread: Re: cgd and remote keys
Next by Thread: Re: cgd and remote keys
Indexes:

Home | Main Index | Thread Index | Old Index