An authentication question
Paul Crowley
paul at ciphergoth.org
Tue Aug 6 11:55:29 EDT 2002
Roy M.Silvernail <roy at sendai.scytale.com> writes:
> > public key operations are significantly faster than private key
> >ones. So it is far easier to check 500 sigs than to generate them in
> >the first place.
>
> Yes, but for a DoS attack, the signatures need not be good. They only
> need a well-formed envelope.
Although see previous discussion on this list for Bernstein's (IIRC)
probablistic fast reject of false RSA signatures. Note that signatures
have to be of a special form for this to work.
--
__ Paul Crowley
\/ o\ sig at paul.ciphergoth.org
/\__/ http://www.ciphergoth.org/
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com
More information about the cryptography
mailing list