IETF-SSH archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: PublicKeyFile Format Security Considerations



> Security Considerations
> 
>   There are no known security issues raised by this document.

Sorry, this is a good way to get laughed at by the IESG these days.

This is an out of band exchange format for public keys, so it's
going to be shovelled around between systems. 

The big one which jumps out at me is:

 - by design, the file format does not provide meaningful integrity
protection or authentication of the contents (i.e., this is not a
certificate) so you have to be careful with how you move the file
around and how you store it..

					- Bill



Home | Main Index | Thread Index | Old Index