[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: LIN6 i-d for multihoming and mobility support

To: mbagnulo@ing.uc3m.es
Subject: Re: LIN6 i-d for multihoming and mobility support
From: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>
Date: Thu, 08 Jan 2004 03:00:33 +0900
Cc: multi6@ops.ietf.org
In-reply-to: <LIEEJBCNFDJHFFKJJDPAAEFLDIAA.mbagnulo@ing.uc3m.es>
References: <LIEEJBCNFDJHFFKJJDPAAEFLDIAA.mbagnulo@ing.uc3m.es>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4) Gecko/20030624 Netscape/7.1 (ax)

marcelo bagnulo;

Are you seriously considering that users are willing to memorize
and type in from key boards lengthy public keys or its signatures?

Well, transport and network protocols use 128 bit long strings to identify
the other end of the communication, so it would be useful to provide a
mechanism to prove the ownership of those strings


Correctly qualifying, 128 bit psuedo random ID for secure
identification is completely insecure and useless unless there
is a *SECURE* mapping between the ID and a lot more handy ID to
identify the owner.

Without such mapping, such proposals are incomplete.

Note also that, if you assume something like PKI or secure DNS,
you should also assume that session keys are shared and sessions
are secured without bothering multi6 group. That is, there is no
point to have the 128 bit long strings.

Masataka Ohta

Follow-Ups:
- RE: LIN6 i-d for multihoming and mobility support
  - From: "marcelo bagnulo" <mbagnulo@ing.uc3m.es>

References:
- RE: LIN6 i-d for multihoming and mobility support
  - From: "marcelo bagnulo" <mbagnulo@ing.uc3m.es>

Prev by Date: RE: LIN6 i-d for multihoming and mobility support
Next by Date: RE: LIN6 i-d for multihoming and mobility support
Previous by thread: RE: LIN6 i-d for multihoming and mobility support
Next by thread: RE: LIN6 i-d for multihoming and mobility support
Index(es):
- Date
- Thread