Re: A Method of Session Key Generation

bram (bram@gawth.com)
Thu, 28 Jan 1999 15:54:57 -0800 (PST)

• Next message: bram: "Re: remailer + linux traficshaper"
• Previous message: Jim Gillogly: "Re: A Method of Session Key Generation"
• Maybe in reply to: Mok-Kong Shen: "A Method of Session Key Generation"
• Next in thread: Mok-Kong Shen: "Re: A Method of Session Key Generation"
• Reply: Mok-Kong Shen: "Re: A Method of Session Key Generation"
• Reply: David R. Conrad: "Re: A Method of Session Key Generation"

A certain person who obviously hasn't been paying attention asked about
session key generation.

The answer is use a CSPRNG. This has been discussed here a *lot* already.

There's a more subtle problem of what to do when your counterparty doesn't
trust you to have a good source of entropy. That problem can be fixed by
having certificates from third parties saying 'I gave some random bits to
party x at time y using his public key'. The exact details of what sets of
such certificates are acceptable to begin a session are, of course, an
implementation problem, but a very non-trivial one.

-Bram

• Next message: bram: "Re: remailer + linux traficshaper"
• Previous message: Jim Gillogly: "Re: A Method of Session Key Generation"
• Maybe in reply to: Mok-Kong Shen: "A Method of Session Key Generation"
• Next in thread: Mok-Kong Shen: "Re: A Method of Session Key Generation"
• Reply: Mok-Kong Shen: "Re: A Method of Session Key Generation"
• Reply: David R. Conrad: "Re: A Method of Session Key Generation"