Re: additional core draft nits in need of WG attention.

To: sommerfeld%east.sun.com@localhost
Subject: Re: additional core draft nits in need of WG attention.
From: nisse%lysator.liu.se@localhost (Niels Möller)
Date: 10 Nov 2003 17:28:45 +0100

Bill Sommerfeld <sommerfeld%east.sun.com@localhost> writes:

> > >10.  Section 5, last paragraph. What is "implicit server
> > >authentication?"  The whole paragraph is unclear.
> 
> Can someone provide some fill-in text?

I think it refers to key exchange methods like the ones used in tls
and ssh1, where one party chooses the session key and encrypts it
using the other party's public RSA key. Then you must consider the
remote end unauthenticated until you have verified that she knows the
session key.

Do others share this interpretation? (I'd have to think some more
about the implications to be alble to write any precise text).

/Niels

References:
- additional core draft nits in need of WG attention.
  - From: Bill Sommerfeld

Prev by Date: Re: additional core draft nits in need of WG attention.
Next by Date: Re: additional core draft nits in need of WG attention.
Previous by Thread: Re: additional core draft nits in need of WG attention.
Next by Thread: Re: additional core draft nits in need of WG attention.
Indexes:

Home | Main Index | Thread Index | Old Index