[Top] [All Lists]

RE: I-D ACTION:draft-ietf-smime-small-subgroup-00.txt

1999-03-29 20:12:39
As I mentioned at the meeting in Minneapolis, this draft is intended to be
an informational draft briefly describing the "small-subgroup" attacks on
Diffie-Hellman and methods to protect oneself from these attacks.  I would
encourage people to read this draft.  Comments and criticism are

Reply To:     Internet-Drafts(_at_)ietf(_dot_)org
Sent:         Monday, March 29, 1999 5:23 PM
To:   IETF-Announce
Cc:   ietf-smime(_at_)imc(_dot_)org
Subject:      I-D ACTION:draft-ietf-smime-small-subgroup-00.txt

<<Message: Microsoft Exchange Message>>
A New Internet-Draft is available from the on-line Internet-Drafts
This draft is a work item of the S/MIME Mail Security Working Group of the

      Title           : Methods for Avoiding the 'Small-Subgroup' 
                          Attacks on the Diffie-Hellman Key Agreement
                          for S/MIME
      Author(s)       : R. Zuccherato
      Filename        : draft-ietf-smime-small-subgroup-00.txt
      Pages           : 7
      Date            : 26-Mar-99
In some circumstances the use of the Diffie-Hellman key agreement scheme
in a prime order subgroup of a large prime p is vulnerable to certain
attacks known as 'small-subgroup' attacks.  Methods exist, however, to
prevent these attacks.  This document will describe the situations
relevent to the S/MIME standard in which protection is required and the
methods that can be used to to prevent these attacks.

A URL for this Internet-Draft is:

Internet-Drafts are also available by anonymous FTP. Login with the
"anonymous" and a password of your e-mail address. After logging in,
type "cd internet-drafts" and then
      "get draft-ietf-smime-small-subgroup-00.txt".

A list of Internet-Drafts directories can be found in 

Internet-Drafts can also be obtained by e-mail.

Send a message to:
In the body type:
      "FILE /internet-drafts/draft-ietf-smime-small-subgroup-00.txt".
NOTE: The mail server at can return the document in
      MIME-encoded form by using the "mpack" utility.  To use this
      feature, insert the command "ENCODING mime" before the "FILE"
      command.  To decode the response(s), you will need "munpack" or
      a MIME-compliant mail reader.  Different MIME-compliant mail readers
      exhibit different behavior, especially when dealing with
      "multipart" MIME messages (i.e. documents which have been split
      up into multiple messages), so check your local documentation on
      how to manipulate these messages.
Below is the data which will enable a MIME compliant mail reader
implementation to automatically retrieve the ASCII version of the

<Prev in Thread] Current Thread [Next in Thread>