[729] in Kerberos_V5_Development
encrypting database in several keys in kprop bad?
jtkohl@ATHENA.MIT.EDU (jtkohl@ATHENA.MIT.EDU)
Mon Jun 3 12:46:33 1991
During one of my many talks in Europe, one of the audience mentioned
that he'd been advised by security/encryption types that encrypting the
same thing in two different keys, and exposing both, is
cryptographically weaker than encrypting it in one key and exposing
that.
This came up when talking about keys used by kprop to encrypt the
database transmission to the slave servers. Perhaps we should use key
negotiation, and have the kprop "push" side use the same key to encrypt
the transmissions to all the slaves?
