Re: [dtn-security] Newbie seeking some security related advice

"Graham Keellings (Leonix Solutions Pte Ltd)" <Graham@LeonixSolutions.com> Tue, 19 May 2009 03:06 UTC

Received: from sky.fastbighost.net (sky.fastbighost.net [76.76.22.153]) by maillists.intel-research.net (8.13.8/8.13.8) with ESMTP id n4J36FVE030360 for <dtn-security@maillists.intel-research.net>; Mon, 18 May 2009 20:06:15 -0700
Received: from dyn98-b60-access.superdsl.com.sg ([202.73.60.98] helo=[192.9.200.135]) by sky.fastbighost.net with esmtpa (Exim 4.69) (envelope-from <Graham@LeonixSolutions.com>) id 1M6FZz-0005EE-JX; Mon, 18 May 2009 23:01:24 -0400
Message-ID: <4A122106.9060307@LeonixSolutions.com>
Date: Tue, 19 May 2009 11:01:26 +0800
From: "Graham Keellings (Leonix Solutions Pte Ltd)" <Graham@LeonixSolutions.com>
Organization: Leonix Solutions Pte Ltd
User-Agent: Thunderbird 2.0.0.21 (X11/20090409)
MIME-Version: 1.0
To: Kristian Erik Hermansen <kristian.hermansen@gmail.com>
References: <89E48AE60E64EF4E8EB32B0B7EC74920A1B0F5@EVS-EC1-NODE2.surrey.ac.uk> <4A12195A.6000207@LeonixSolutions.com> <fe37588d0905181946p71278bd1x8ea873ce5dc93e6@mail.gmail.com>
In-Reply-To: <fe37588d0905181946p71278bd1x8ea873ce5dc93e6@mail.gmail.com>
X-Enigmail-Version: 0.95.7
Content-Type: multipart/mixed; boundary="------------010406090306070403050906"
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - sky.fastbighost.net
X-AntiAbuse: Original Domain - maillists.intel-research.net
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - LeonixSolutions.com
X-Source:
X-Source-Args:
X-Source-Dir:
Cc: dtn-security@maillists.intel-research.net
Subject: Re: [dtn-security] Newbie seeking some security related advice
X-BeenThere: dtn-security@maillists.intel-research.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DTN Security Discussion <dtn-security.maillists.intel-research.net>
List-Unsubscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=unsubscribe>
List-Archive: <http://maillists.intel-research.net/pipermail/dtn-security>
List-Post: <mailto:dtn-security@maillists.intel-research.net>
List-Help: <mailto:dtn-security-request@maillists.intel-research.net?subject=help>
List-Subscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=subscribe>
X-List-Received-Date: Tue, 19 May 2009 03:06:16 -0000

Kristian Erik Hermansen wrote:
> Hello Graham,
>
> On Mon, May 18, 2009 at 7:28 PM, Graham Keellings (Leonix Solutions
> Pte Ltd) <Graham@leonixsolutions.com> wrote:
>   
>> how secure is MAC? One person is claiming that it is not good enough and
>> needs to supplemented by hashing which sounds strange to me since I thought
>> that MAC _is_ strong one-way hashing.
>>     
>
> MAC will not be secure from tampering without hashing in cases such as
> chosen plaintext attacks.  
Thanks very much, Kristian. In that case, I wonder why MAC used!?

Can you point me to something that explains how MAC + hashing works? Do
I now need two secret keys?


> You should join us via IRC in #noisebridge
> on freenode.net ;-)
>   
I shall. I need to get up to speed on this, but it's a personal favour
to someone and I can't spare too much time to work on it.  I'll see you
on IRC.




-- 
Technical Director
Leonix Solutions (Pte) Ltd
18 Boon Lay Way
#09-95 TradeHub 21
Singapore 609966
Telephone:+65 6316 9968
Fax: +65 6316 9208