[145610] in cryptography@c2.net mail archive
Re: GSM eavesdropping
daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Tue Aug 3 12:12:07 2010
Date: Tue, 3 Aug 2010 12:01:23 -0400
From: "Perry E. Metzger" <perry@piermont.com>
To: Eugen Leitl <eugen@leitl.org>
Cc: Nicolas Williams <Nicolas.Williams@oracle.com>, Cryptography List
<cryptography@metzdowd.com>
In-Reply-To: <20100803154900.GZ17969@leitl.org>
On Tue, 3 Aug 2010 17:49:00 +0200 Eugen Leitl <eugen@leitl.org> wrote:
> Encryption is cheap enough (especially if you cache keys from
> previous sessions). Why not encrypt everything?
I'm not sure it is actually cheap enough in all cases. Imagine the
state explosion problem that DNS root servers would face, for
example, in providing pairwise crytpographic sessions for all
queries, especially in a situation where for the most part one only
wants to get a response that is authenticated but which is not per se
secret.
Also, as a practical matter, we don't really have protocol
infrastructure for encrypting absolutely everything at this point.
There is, for example, no protocol by which anonymous DNS queries
could be easily encrypted.
--
Perry E. Metzger perry@piermont.com
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
