[129789] in cryptography@c2.net mail archive
Re: Strength in Complexity?
daemon@ATHENA.MIT.EDU (Arshad Noor)
Mon Aug 4 20:02:33 2008
Date: Mon, 04 Aug 2008 12:53:45 -0700
From: Arshad Noor <arshad.noor@strongauth.com>
To: "Perry E. Metzger" <perry@piermont.com>
CC: Ben Laurie <ben@links.org>, Cryptography <cryptography@metzdowd.com>
In-Reply-To: <87iqugeh41.fsf@snark.cb.piermont.com>
Perry E. Metzger wrote:
> SKMS is vaporware that leaves all
> the hard parts of the specification out.
An open-source implementation has been available for 2 years.
A new version will be available next year that will implement
the current OASIS draft and whatever useful comments the
Public Review of the specification brings.
>
> I think that comparing the advance SQL made with SKMS seems a bit
> unreasonable.
>
I was comparing the concept of data-management to key-management,
which is a more appropriate analogy; there is no end-user language
within an SKMS.
WRT comparing SKMS to Kerberos, for 20+ years I've always seen
Kerberos as a network-authentication protocol and perhaps it is my
failing that I couldn't see the possibility of using a flat-head
screwdriver in a Philips-head screw.
Arshad Noor
StrongAuth, Inc.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
