[13989] in Cypherpunks
Re: Secure RPC?
daemon@ATHENA.MIT.EDU (Martin Janzen)
Fri May 20 15:31:24 1994
From: Martin Janzen <janzen@idacom.hp.com>
To: cypherpunks@toad.com
Date: Fri, 20 May 94 13:24:13 MDT
In-Reply-To: <9405201854.AA15841@deathstar.iaks.ira.uka.de>; from "Hadmut Danisch" at May 20, 94 8:54 pm
Hadmut Danisch writes:
>
>where can I get specs and informations about
>secure RPC?
You can get the source code and associated documentation from
ftp://bcm.tmc.edu/nfs. You'll need the files rpc_40*.shar and
secure_rpc*.shar. Note that this doesn't come with the actual DES
encryption routines; you'll have to find or write your own.
But:
smb@research.att.com writes:
>
> I remember a referance to Sun's secure RPC where the puplic key
> was "insecure" because the it did not use a large "key" (to few bits?)
>
> does anyone one have info on this?
>
> -Pete
>
>Yup. The modulus is too small, and the key exchange was cryptanalyze
>by LaMacchia and Odlyzko. See
>
>@article{nfscrack,
> author = {Brian A. LaMacchia and Andrew M. Odlyzko},
> journal = {Designs, Codes, and Cryptography},
> pages = {46--62},
> title = {Computation of Discrete Logarithms in Prime Fields},
> volume = {1},
> year = {1991},
>}
--
Martin Janzen janzen@idacom.hp.com
Pegasus Systems Group c/o Hewlett-Packard, IDACOM Telecom Operation