Re: How to send user authentication.

Anonymous (nobody@replay.com)
Thu, 10 Sep 1998 17:05:29 +0200

• Next message: lcs Mixmaster Remailer: "Re: bbs prng seed generation"
• Previous message: James Maitland: "Re: Big Int math"
• Next in thread: Adam Back: "Re: How to send user authentication."

> Since system A & B have different salts, the hash values will be
> different on both systems. So, the only way to send authentication
> info to B would be to keep in RAM Alice's cleartext password so it
> can be hashed with B's salt value prior to sending to B. I don't
> like this idea for obvious reasons.

What are the obvious reasons?

You don't have to keep it in RAM, you could store it on a disk.

Any solution will have the property that computer A has in its memory
information which will allow it to authenticate itself to person B as
Alice. That is your problem statement. It is not consistent to then
say that you don't like a solution which puts information in computer
A's memory which has this power.

• Next message: lcs Mixmaster Remailer: "Re: bbs prng seed generation"
• Previous message: James Maitland: "Re: Big Int math"
• Next in thread: Adam Back: "Re: How to send user authentication."