An authentication question

Matthew Byng-Maddick cryptography at lists.colondot.net
Mon Aug 5 18:21:03 EDT 2002


On Mon, Aug 05, 2002 at 04:44:28PM -0400, Jack Lloyd wrote:
> In the second version, any random user (or script) could upload very large
> files, wasting your bandwidth, and also CPU time when you check the sig. Or
> lots and lots of really small files, which would swamp your CPU(s) trying
> to check 500 sigs a second (makes for a good DDOS).

public key operations are significantly faster than private key ones. So it
is far easier to check 500 sigs than to generate them in the first place.

MBM

-- 
Matthew Byng-Maddick         <mbm at colondot.net>           http://colondot.net/

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com



More information about the cryptography mailing list