Re: draft-harris-ssh-rsa-kex-01.txt

To: ietf-ssh%netbsd.org@localhost, mouse%Rodents.Montreal.QC.CA@localhost
Subject: Re: draft-harris-ssh-rsa-kex-01.txt
From: pgut001%cs.auckland.ac.nz@localhost (Peter Gutmann)
Date: Sun, 03 Apr 2005 20:53:11 +1200

der Mouse <mouse%Rodents.Montreal.QC.CA@localhost> squeeked:

>Now, RFC3447 *does* specify that conversion.  But the encoding of this data
>blob as a string is deceptively close to the encoding of the big number as an
>mpint (the major difference is exactly how and when leading zero bits are
>included).  I'd like to see this similarly explicitly acknowledged and
>clarified.

Why is it encoded as a string in the first place when the value is quite
clearly an integer?  For the equivalent DH keyex, the corresponding quantities
e and f are encoded as mpints and not strings.  Making a subtle change to the
encoding for this alternative keyex method seems to be asking for implementor
confusion.

Peter.

Follow-Ups:
- Re: draft-harris-ssh-rsa-kex-01.txt
  - From: der Mouse

References:
- draft-harris-ssh-rsa-kex-01.txt
  - From: der Mouse

Prev by Date: Re: Ben Harris's individual submissions: arcfour-fixes and rsa-kex
Next by Date: Re: draft-harris-ssh-rsa-kex-01.txt
Previous by Thread: draft-harris-ssh-rsa-kex-01.txt
Next by Thread: Re: draft-harris-ssh-rsa-kex-01.txt
Indexes:

Home | Main Index | Thread Index | Old Index