On Fri, Oct 03, 2003 at 02:16:22PM -0400, Jerrold Leichter wrote: > The Interlock Protocol doesn't provide this - it prevents the MITM from > modifying the exchanged messages, but can't prevent him from reading them. > It's not clear if it can be achieved at all. But it does make sense as a > security spec.
Hardly. Just perform DH exchange over the interlock protocol. By your own admission, the MITM could not change the factors being exchanged, and by DH, the MITM cannot then know what the resulting key data is. -- Taral <[EMAIL PROTECTED]> This message is digitally signed. Please PGP encrypt mail to me. "Be who you are and say what you feel, because those who mind don't matter and those who matter don't mind." -- Dr. Seuss
Description: Digital signature