Re: Zfone and ZRTP :: encryption for voip protocols
cybergio wrote: Zfone :: http://www.philzimmermann.com/EN/zfone/index.html ...it achieves security without reliance on a PKI, key certification, trust models, certificate authorities, or key management... Good. But, uf course, there's a trust model and you need to rely on it. ...allows the detection of man-in-the-middle (MiTM) attacks by displaying a short authentication string for the users to read and compare over the phone. Depends on the trust model. May not work. Cheers, Ed Gerck - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]
Re: ISO rejects WAPI (for now)
Joachim Strombergson wrote: Aloha! I don't know if you have seen this, but ISO rejected the WAPI standard proposal, opting instead for 802.11i/WPA2. http://eet.com/news/design/business/showArticle.jhtml?articleID=181502994 How terrible, AES instead of the secret sauce-cipher. ,-) WAPI is no longer secret sausce. It has been published in Chinese, including the formerly unpublished SMS4 block cipher. - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]
Re: ISO rejects WAPI (for now)
Aloha! David Johnston wrote: Joachim Strombergson wrote: I don't know if you have seen this, but ISO rejected the WAPI standard proposal, opting instead for 802.11i/WPA2. http://eet.com/news/design/business/showArticle.jhtml?articleID=181502994 How terrible, AES instead of the secret sauce-cipher. ,-) WAPI is no longer secret sausce. It has been published in Chinese, including the formerly unpublished SMS4 block cipher. Great, now could anybody please decipher the Chinese-encrypted description? ;-) On a more serious note, has anybody done any analysis of SMS4 yet? The only thing I could find when Googling was this ISO document related to the fast track-effort. The actual text about SMS4 is rather brief: https://committees.standards.org.au/COMMITTEES/I-000/X0001/JTC001-N-7904.pdf -- Med vänlig hälsning, Cheers! Joachim Strömbergson Joachim Strömbergson - ASIC designer, nice to *cute* animals. snail: phone: mail web: Ö. Eriksbergsgatan 74 +46 31 - 12 14 01 [EMAIL PROTECTED] 417 63 Göteborg+46 733 75 97 02www.Strombergson.com/joachim - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]
Re: Zfone and ZRTP :: encryption for voip protocols
On Wed, Mar 15, 2006 at 02:52:15PM -0800, Ed Gerck wrote: cybergio wrote: Zfone :: http://www.philzimmermann.com/EN/zfone/index.html ...it achieves security without reliance on a PKI, key certification, trust models, certificate authorities, or key management... Good. But, uf course, there's a trust model and you need to rely on it. ...allows the detection of man-in-the-middle (MiTM) attacks by displaying a short authentication string for the users to read and compare over the phone. Depends on the trust model. May not work. Indeed, but it looks to be the right security model for the mass market. -- /\ ASCII RIBBON NOTICE: If received in error, \ / CAMPAIGN Victor Duchovni please destroy and notify X AGAINST IT Security, sender. Sender does not waive / \ HTML MAILMorgan Stanley confidentiality or privilege, and use is prohibited. - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]
Uncracked Enigma messages score: 2 done, 1 to go.
The project to crack three remaining unsolved WWII era Enigma messages has now completed two of them... http://news.bbc.co.uk/2/hi/technology/4808882.stm Perry - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]