Re: Way Forward

Simon Blake-Wilson wrote:

Hi folks,

As Russ points out, there are applications of S/MIME where the known chosen
ciphertext attack
on PKCS 1 encryption is applicable.

However I believe the more significant threat is that academic cryptographers
have largely
stopped looking at PKCS 1 encryption because they view it as broken from a
theoretical viewpoint.
I think this means that the risk that someone will come up with an improved
attack (or already knows
a better attack but is not publicizing it) is significant.


Investigating other weaknesses in PKCS 1 is still of academic interest since
several secure protocols which are widely deployed still use it, namely TLS and
SSL.

bob

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Way Forward, (continued) Re: Way Forward, Sean Turner Re: Way Forward, Paul Hoffman / IMC Message not available RE: Way Forward, Russ Housley RE: Way Forward, Jim Davies Re: Way Forward, David P. Kemp Re: Way Forward, Russ Housley RE: Way Forward, Linn, John Re: Way Forward, Simon Blake-Wilson Re: Way Forward, Malte Borcherding Re: Way Forward, Simon Blake-Wilson Re: Way Forward, Bob Relyea <= Re: Way Forward, Peter Gutmann RE: Way Forward, Russ Housley RE: Way Forward, Pawling, John RE: Way Forward, Pawling, John Re: Way Forward, Dr Stephen Henson RE: Way Forward, Peter Gutmann Re: Way Forward, David P. Kemp

Previous by Date:	RE: Way Forward, Russ Housley
Next by Date:	Re: Way Forward, Russ Housley
Previous by Thread:	Re: Way Forward, Simon Blake-Wilson
Next by Thread:	Re: Way Forward, Peter Gutmann
Indexes:	[Date] [Thread] [Top] [All Lists]