[376] in Kerberos
Re: Random Session Keys.
daemon@TELECOM.MIT.EDU (Steve Miller)
Thu Apr 28 16:37:32 1988
From: miller%erlang.DEC@DECWRL.DEC.COM (Steve Miller)
To: kerberos@ATHENA.MIT.EDU, MILLER%erlang.DEC@DECWRL.DEC.COM
I talked very briefly to our crypto guru, and he mentioned that some of
the crypto-based pseudo-random key generators were very expensive
computationally, and one had to exercise care in the initial (secret) seed.
He suggested looking at a DES based solution as sketched out in the
ANSI X9.17-1985 Appendix C, which is seeded using a secret double length
DES key and secret IV. I will paper mail a copy of the page to Bill Sommerfield.
It would be a very worthwhile minor project to carefully look into this and
other similar alternatives, making sure the sequences are extremely long.
If something works out in terms of both randomness and computes, I would
strongly recommend adopting it.
Steve.
