Relationship between user name and public key pair in Authentication Protocol

To: ietf-ssh%netbsd.org@localhost
Subject: Relationship between user name and public key pair in Authentication Protocol
From: miaofy <miaofy%huawei.com@localhost>
Date: Thu, 13 Mar 2003 11:21:06 +0800

Title: 邮件

Hi, all:

I have a doubt on draft-ietf-secsh-userauth-16.txt.

In section 2.1, there is:

"In any case, if the user does not exist, the authentication request MUST NOT be accepted."

In section 4, there is a sentence like:

"When the server receives this message, it MUST check whether the supplied key is acceptable for authentication, and if so, it MUST check whether the signature is correct."

Now the question is: Is there any RELATIONSHIP between the user name and the public key? For example, public key K1 is only used by user U1.

If there is relationship, what is it? 1:1, 1:n, n:1 or m:n? I prefer to 1:1 and 1:n because n:1 and m:n have serious security problem.

Yours

Miao

Prev by Date: I-D ACTION:draft-ietf-secsh-gsskeyex-06.txt
Next by Date: Re: IESG feedback on core drafts.
Previous by Thread: I-D ACTION:draft-ietf-secsh-gsskeyex-06.txt
Next by Thread: 答复: Relationship between user name and public key pair in Authentication Protocol
Indexes:

Home | Main Index | Thread Index | Old Index