Full Disclosure mailing list archives
Re: One-Time Pad Authentication
From: Michael Sierchio <kudzu () tenebras com>
Date: Sun, 30 Nov 2003 17:21:30 -0800
Jonathan A. Zdziarski wrote:
I'm interested in coding a one-time pad authentication system; similar to SecurID or other types of token authentication only with software tokens. The administrator would generate the one-time pads for each user and distribute them using whatever secure method gets coded (PGP,SSH, or whatever).
You've thereby reduced the security of a one-time pad to that of the cryptologic and protocol used to distribute it. Simply isn't done, old chap. Use: trusted courier; registered US mail; etc. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- One-Time Pad Authentication Jonathan A. Zdziarski (Nov 30)
- Re: One-Time Pad Authentication Jeremiah Cornelius (Nov 30)
- Re: One-Time Pad Authentication Michael Sierchio (Nov 30)
- Re: One-Time Pad Authentication Gary E. Miller (Nov 30)
- don't waste your time (was: Re: One-Time Pad Authentication) jon schatz (Nov 30)
- Re: One-Time Pad Authentication Eric Rescorla (Nov 30)
- Re: One-Time Pad Authentication Blue Boar (Nov 30)
- Re: One-Time Pad Authentication Jonathan A. Zdziarski (Nov 30)
- Message not available
- Re: One-Time Pad Authentication Jonathan A. Zdziarski (Nov 30)
- Re: One-Time Pad Authentication Timothy J. Miller (Nov 30)
- Re: One-Time Pad Authentication the1 (Dec 02)
- <Possible follow-ups>
- Re: One-Time Pad Authentication otto1122 (Dec 02)