Re: ArcotSign (was Re: Does security depend on hardware?)

Mok-Kong Shen (mok-kong.shen@stud.uni-muenchen.de)
Tue, 22 Sep 1998 08:59:55 +0100

• Next message: merchcard1@usa.net: "CREDIT CARD PROCESSING"
• Previous message: Colin Plumb: "Re: ArcotSign (was Re: Does security depend on hardware?)"
• Maybe in reply to: Ryan Lackey: "ArcotSign (was Re: Does security depend on hardware?)"
• Next in thread: Bruce Schneier: "Re: ArcotSign (was Re: Does security depend on hardware?)"
• Reply: Bruce Schneier: "Re: ArcotSign (was Re: Does security depend on hardware?)"

bram wrote:
>
> On Mon, 21 Sep 1998, Bruce Schneier wrote:
>
> > Here's the basic idea: Strew a million passwords on your hard drive, and
> > make it impossible to verify which is the correct one offline. So, someone
> > who steals the password file off the client cannot run a cracking tool
> > against the file.
>
> Is this really patentable? It sounds a *lot* like the original public-key
> algorithm (the one involving lots of little 'puzzles')

A question : How does the legitimate user find his password?
(Sorry for not having followed this thread from the beginning.)

M. K. Shen

• Next message: merchcard1@usa.net: "CREDIT CARD PROCESSING"
• Previous message: Colin Plumb: "Re: ArcotSign (was Re: Does security depend on hardware?)"
• Maybe in reply to: Ryan Lackey: "ArcotSign (was Re: Does security depend on hardware?)"
• Next in thread: Bruce Schneier: "Re: ArcotSign (was Re: Does security depend on hardware?)"
• Reply: Bruce Schneier: "Re: ArcotSign (was Re: Does security depend on hardware?)"