Re: DH-CHAP

To: "Yongge Wang" <ywang@karthika.com>
Subject: Re: DH-CHAP
From: "Perry E. Metzger" <perry@wasabisystems.com>
Date: 15 Apr 2002 13:55:28 -0400
Cc: <ips@ece.cmu.edu>
Content-Type: text/plain; charset=us-ascii
In-Reply-To: <FOEDIAMMNNAJCNDKPAAPMEFACAAA.ywang@karthika.com>
References: <FOEDIAMMNNAJCNDKPAAPMEFACAAA.ywang@karthika.com>
Sender: owner-ips@ece.cmu.edu
User-Agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/20.7

"Yongge Wang" <ywang@karthika.com> writes:
> "Yongge Wang" <ywang@karthika.com> writes:
> >> You can say this is MITM if you define MITM in this way.
> >
> >That's how it is usually defined in the literature.
> 
> perhpas you can point me to some specific reference in the 
> literature which define it in this way. However, if you read the 
> industry crypto book by Schneier, or the academic book
> of "Handbook of Applied Cryptography" by Menezes, Vanstone,
> and Ooschoot, you will not claim that MITM is defined in this way.

Having read and taught classes from both, I'd say that it is indeed
defined that way in those books. I invite anyone else reading this to
flip through them and read for themselves.

The whole point of a man in the middle DH attack is to intercept the
communications so that you can deceive the endpoint(s) about who they
are talking to. Attacks at places like shared ethernet segments are a
natural for such things.

--
Perry E. Metzger		perry@wasabisystems.com
--
NetBSD: The right OS for your embedded design. http://www.wasabisystems.com/

References:
- RE: DH-CHAP
  - From: "Yongge Wang" <ywang@karthika.com>

Prev by Date: RE: DH-CHAP
Next by Date: Re: DH-CHAP
Prev by thread: RE: DH-CHAP
Next by thread: RE: DH-CHAP
Index(es):
- Date
- Thread

Home

Last updated: Mon Apr 15 15:18:22 2002
9679 messages in chronological order