i know ssl is broken down into 16-byte packet and sent; but it is also AND'd(i
forget the exact terminology) with the previous packet to doubly encyrpt the
stream, so if you break the stream you also have to break the AND (which start
iwth the initialization vactor, which is determined, or can be, on the fly). If
you do udp, and a packet is lost? wtf do you do? You have to have the previous
packet before the one that was lost to generate the correct data during
encryption...
if you do not use the stream-encryption technique your encryption algo is
musch easier to break.
lime.
Alexander Pevzner <[EMAIL PROTECTED]> wrote:
Lemon,
There is no fundamental reasons, why SSL cannot be used on a top of UDP.
BTW, the first thing SSL does with TCP is organizing the message-based
protocol on a top of TCP, which is a stream protocol by its nature.
And not all ciphers are slow. For example, RC4 can be quite fast, and it
considered to be secure when properly used.
Lemon Obrien wrote:
>>>Could a SSL hop-to-hop communication really improve the general
> security of a P2P systems
>
> SSL is TCP based, hop-to-hop implies UDP. I know SSL b/c I've written a
> driver for the protocol. If you use some type of SSL between nodes, it's
> be really slow, and each node would have to have its own certificate.
>
> you can, of course, write your own encryption.
>
> lemon
>
> */Luigi De Donà /* wrote:
>
> Hi all,
>
> About the security of a software system based on a P2P protocol :
>
> In a distributed system (P2P) where doesnt exist a Byzantine and
> malicious faults tolerance protocol implementation,
> do you think that an Internet deployment using a closed protocol is
> more secure than using an open protocol ?
>
> Could a SSL hop-to-hop communication really improve the general
> security of a P2P systems ?
>
> Please let me know your opinions.
>
> Thanks,
> Luigi
> _______________________________________________
> p2p-hackers mailing list
> [email protected]
> http://lists.zooko.com/mailman/listinfo/p2p-hackers
>
>
>
>
> You don't get no juice unless you squeeze
> Lemon Obrien, the Third.
>
> http://www.tamago.us
>
> ------------------------------------------------------------------------
> Check out the all-new Yahoo! Mail beta
>
> - Fire up a more powerful email and get things done faster.
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> p2p-hackers mailing list
> [email protected]
> http://lists.zooko.com/mailman/listinfo/p2p-hackers
_______________________________________________
p2p-hackers mailing list
[email protected]
http://lists.zooko.com/mailman/listinfo/p2p-hackers
You don't get no juice unless you squeeze
Lemon Obrien, the Third.
http://www.tamago.us
---------------------------------
Cheap Talk? Check out Yahoo! Messenger's low PC-to-Phone call rates.
_______________________________________________
p2p-hackers mailing list
[email protected]
http://lists.zooko.com/mailman/listinfo/p2p-hackers
