Re: Re-using RSA1 keys as RSA

To: Markus Friedl <markus%openbsd.org@localhost>
Subject: Re: Re-using RSA1 keys as RSA
From: Dan Kaminsky <dan%doxpara.com@localhost>
Date: Fri, 22 Aug 2003 15:27:21 -0600

Markus Friedl wrote:

On Thu, Aug 21, 2003 at 09:10:13PM -0700, Frank Cusack wrote:

Is there a security issue with turning an RSA1 key into an RSA key?  One
might want to do this, e.g., to move to protocol 2 without having to
update authorized_keys files.


in protocol 1 rsa keys are used for encryption,
in protocol 2 they are used for signatures.

Markus--

In protocol 2, the RSA public key verifies a signature, as inprotocol 1, a RSA public key encrypts a token. I'm not sure, but theonly difference between the two may very well be the source of the tokenbeing operated upon -- SSHv1 has the client generate random data; SSHv2has the server generate and hash it. Either way, client + pubkeyauthenticates server + privkey.

I'm not saying it's safe to dual-purpose RSA; I'm just not entirelysure I've seen evidence it's dangerous to multipurpose the same RSAkey. Have you seen any evidence to the contrary?


--Dan

Follow-Ups:
- Re: Re-using RSA1 keys as RSA
  - From: Damien Miller

References:
- Re-using RSA1 keys as RSA
  - From: Frank Cusack
- Re: Re-using RSA1 keys as RSA
  - From: Markus Friedl

Prev by Date: Re: Re-using RSA1 keys as RSA
Next by Date: RE: gss userauth
Previous by Thread: Re: Re-using RSA1 keys as RSA
Next by Thread: Re: Re-using RSA1 keys as RSA
Indexes:

Home | Main Index | Thread Index | Old Index