Other Directory Sites: SeekWonder | Directory Owners Forum
The following archive was created by hippie-mail 7.98617-22 on Sat Apr 10 1999 - 01:18:28
William H. Geiger III (whgiii@openpgp.net)
Wed, 24 Feb 1999 07:01:27 -0600
In <01BE5FDA.AE906340.wwhyte@baltimore.ie>, on 02/24/99
at 09:47 AM, William Whyte <wwhyte@baltimore.ie> said:
>> What a mess! RSA expands stuff to it's modulus size. So
>> imagine ASN.1 encoding your hash + session key +..., then running it
>> through RSA. Then encoding the result in ASN.1 again. It heavily
>> bloated the packet header by an unpredictable amount. After those
>> experiences I vowed never to use ASN.1 again if at all possible. (I
>> also didn't care much for RSA after the last experience).
>It's a nit-picking point, but the problem isn't ASN.1, it's BER/DER.
>There are other encoding rules that don't bloat the data anything like so
>much.
>> Except for
>> SNMP v1, I don't think any other protocol using ASN.1 has been successful,
>> especially security ones. For example look at Kerberos v5 or SET or the
>> first couple of secure SNMP attempts.
>Well, S/MIME.
Like he said ....
-- --------------------------------------------------------------- William H. Geiger III http://www.openpgp.net Geiger Consulting Cooking With Warp 4.0Author of E-Secure - PGP Front End for MR/2 Ice PGP & MR/2 the only way for secure e-mail. OS/2 PGP 5.0 at: http://www.openpgp.net/pgp.html Talk About PGP on IRC EFNet Channel: #pgp Nick: whgiii ---------------------------------------------------------------
The following archive was created by hippie-mail 7.98617-22 on Sat Apr 10 1999 - 01:18:28