Re: SecuriKey

From: tabris
Date: Sun Jan 11 2004 - 14:47:47 EST


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Sunday 11 January 2004 10:44 am, Hunt, Adam wrote:
> Does anyone know anything about SecuriKey devices (www.securikey.com)?
> They are a little USB fob that looks kind of like a pen drive. I
> assume they are just some type of one-time-pad generator but don't have
> one to play with. This sounds like the perfect device to implement as
> a LSM.
>
> --adam
> -

How do you generate a one-time-pad? a one time pad must be by definition
truly random, and be used only once. and if you can send the Securikey
via a secure channel at the same time as the message, then you don't need
the OTP.

I should also mention that the problem with 'generating' an OTP via any
mechanical or algorithmic means is impossible as at best an OTP will only
be pseudo-random, and therefore with identical inputs (assuming it is
possible, which we can assume here for the sake of theory and security),
the same OTP can be generated, thus breaking our assumption/necessity of
non-deterministic output.

I'd say more but I'm on my way to work.
- --
tabris
- -
I do not know whether I was then a man dreaming I was a butterfly, or
whether I am now a butterfly dreaming I am a man.
-- Chuang-tzu
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)

iD8DBQFAAagR1U5ZaPMbKQcRAmo2AJ0Wc6xTLCd/swZYlEO6emktLhOtRgCfUUP5
OB4YFi6bh1yrVMzGIoN6XNs=
=O/uT
-----END PGP SIGNATURE-----

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/