[18044] in cryptography@c2.net mail archive
Re: Ostiary
daemon@ATHENA.MIT.EDU (Nicolas Rachinsky)
Tue Aug 2 22:54:48 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 3 Aug 2005 00:53:47 +0200
From: Nicolas Rachinsky <crypto-0@ml.turing-complete.org>
To: cryptography@metzdowd.com
Mail-Followup-To: Nicolas Rachinsky <crypto-0@ml.turing-complete.org>,
cryptography@metzdowd.com
In-Reply-To: <1122999856.15526.11.camel@roar.cs.berkeley.edu>
* Karl Chen <quarl@cs.berkeley.edu> [2005-08-02 09:24 -0700]:
> As an authentication protocol, it looks vulnerable to a time
> synchronization attack: an attacker that can desynchronize the server
> and client's clocks predictably can block the client's authentication
> and use it as his own. (Assuming the server's clock is monotonically
I don't see where the client's time is used. What am I missing?
Nicolas
PS:
Why is this list blocking my mail if the envelope-from is not
subscribed?
[Moderator's note: there is this little known phenomenon called "spam"
we like to avoid... it is much harder to moderate a list if you have
to wade through 400 garbage messages a day... --Perry]
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
