[Cryptography] Toxic Combination

Christian Huitema huitema at huitema.net
Sun Nov 30 19:49:19 EST 2014

On Sunday, November 30, 2014 2:58 PM Alfie John wrote:

> I think a better solution would be something like implementing Digest Authentication (RFC 2069, but replacing MD5 with something like AES-256 and allow it to be upgradable) in the browser. The password field value would then be replaced with the value from the DA call and no secrets would be leaked. This solution would get way faster adoption.

That would be a nice entry in the underhanded crypto contest. Given dictionary attacks, digest authentication is hardly better than plain text.

If we want a better solution, we have to implement something like AKE.

-- Christian Huitema

More information about the cryptography mailing list