> That's the reason secure tokens exist: they do not in any way allow
> 'public' access to the secrets stored. Think of them as 'write once'
> devices; they are secured by off-loading part of the crypto process to
> the token itself: you will only be able to read derived data. Since you
> use a nonsecure token storage, the whole exercise about RSA or El Gamal
> et al becomes moot, as I assume the password/pin used will contain far
> less entropy than any other part of your crypto system will be able to
> transport anyway (ever met a human who can remember a 128 bit secret key
> without keeping notes?).

Actually, human beings can trivially remember secrets with the eqivalent of
128-bits or more. For example:

Approximate Bits:   Phrase:
140                 y doth h3 4sake Me?
110                 ! oppose the deth penalty
96                  1 like big BUTZ
90                  Fr33dom N0w!

        DS


______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to