Hi, > > The pre-shared information need not to be secret ... but there is > > need for pre-shared trusted information. > Er, if the pre-shared information is not secret, how can I be sure > that the person presenting it is in fact my intended correspondent > and not a MIM?
That is why I wrote "trusted", I don't assume how this is trusted, but I need to trust it. If I am 100% sure the fingerprint comes from the right guy, I can easily test that the fingerprint corresponds to the intended public key, so that the publick key effectively belongs to the right guy, and crypting with that public key, only the right guy with his provate key will be able to read my message. Now Diffie-Hellman may help providing the trust for the fingerprint. Bests, Olivier _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[email protected]"
