[14380] in cryptography@c2.net mail archive
Re: Monoculture
daemon@ATHENA.MIT.EDU (Guus Sliepen)
Wed Oct 1 16:22:40 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 1 Oct 2003 22:20:53 +0200
From: Guus Sliepen <guus@sliepen.eu.org>
To: cryptography@metzdowd.com
In-Reply-To: <3F7B1E2F.43C7D65F@systemics.com>
--KM+e2hnYAO+MCJ5e
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Wed, Oct 01, 2003 at 02:34:23PM -0400, Ian Grigg wrote:
> Don Davis wrote:
>=20
> > note that customers aren't usually dissatisfied with
> > the crypto protocols per se; they just want the
> > protocol's implementation to meet their needs exactly,
> > without extra baggage of flexibility, configuration
> > complexity, and bulk.
[...]
> Including extra functionality means that they have
> to understand it, they have to agree with its choices,
> they have to follow the rules in using it, and have
> to pay the costs. If they can ditch the stuff they
> don't want, that means they are generally much safer
> in making simple statements about the security model
> that they have left.
You clearly formulated what we are doing! We want to keep our crypto as
simple and to the point as necessary for tinc. We also want to
understand it ourselves. Implementing our own authentication protocol
helps us do all that.
Uhm, before getting flamed again: by "our own", I don't mean we think we
necessarily have to implement something different from all the existing
protocols. We just want to understand it so well and want to be so
comfortable with it that we can implement it ourselves.
--=20
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus@sliepen.eu.org>
--KM+e2hnYAO+MCJ5e
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQE/ezckAxLow12M2nsRAsLAAKCvxjl71aJF78XtgA4y5ZK+czsElwCePviG
3VCx45ZGyio+TeZUFurBb7E=
=48TE
-----END PGP SIGNATURE-----
--KM+e2hnYAO+MCJ5e--
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
