[Cryptography] Why prefer symmetric crypto over public key crypto?
huitema at huitema.net
Mon Sep 9 00:29:35 EDT 2013
-----BEGIN PGP SIGNED MESSAGE-----
>> I am certainly not going to advocate Internet-scale KDC. But what
>> if the application does not need to scale more than a "network of
> A thousand times yes.
There is however a little fly in that particular ointment. Sure, we can develop system that manage pairwise keys, store them safely, share them between several user devices. But what about PFS? Someday, the pairwise key will be compromised, and the NSA will go back to the archives to decrypt everything. We could certainly devise a variant of DH that use the pairwise key to verify the integrity of the session keys, but that brings the public key technology back in the picture. Maybe I am just ignorant, but I don't know how to get PFS using just symmetric key algorithms. Does someone know better?
- -- Christian Huitema
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.20 (MingW32)
Comment: Using gpg4o v220.127.116.1164 - http://www.gpg4o.de/
-----END PGP SIGNATURE-----
More information about the cryptography