Re: [dtn-security] Newbie seeking some security related advice

Kristian Erik Hermansen <kristian.hermansen@gmail.com> Tue, 19 May 2009 02:50 UTC

Received: from yw-out-1718.google.com (yw-out-1718.google.com [74.125.46.153]) by maillists.intel-research.net (8.13.8/8.13.8) with ESMTP id n4J2ovvH029647 for <dtn-security@maillists.intel-research.net>; Mon, 18 May 2009 19:50:57 -0700
Received: by yw-out-1718.google.com with SMTP id 9so1870523ywk.34 for <dtn-security@maillists.intel-research.net>; Mon, 18 May 2009 19:46:09 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.150.211.7 with SMTP id j7mr13934283ybg.263.1242701167901; Mon, 18 May 2009 19:46:07 -0700 (PDT)
In-Reply-To: <4A12195A.6000207@LeonixSolutions.com>
References: <89E48AE60E64EF4E8EB32B0B7EC74920A1B0F5@EVS-EC1-NODE2.surrey.ac.uk> <4A12195A.6000207@LeonixSolutions.com>
Date: Mon, 18 May 2009 19:46:07 -0700
Message-ID: <fe37588d0905181946p71278bd1x8ea873ce5dc93e6@mail.gmail.com>
From: Kristian Erik Hermansen <kristian.hermansen@gmail.com>
To: "Graham Keellings (Leonix Solutions Pte Ltd)" <Graham@leonixsolutions.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: dtn-security@maillists.intel-research.net
Subject: Re: [dtn-security] Newbie seeking some security related advice
X-BeenThere: dtn-security@maillists.intel-research.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DTN Security Discussion <dtn-security.maillists.intel-research.net>
List-Unsubscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=unsubscribe>
List-Archive: <http://maillists.intel-research.net/pipermail/dtn-security>
List-Post: <mailto:dtn-security@maillists.intel-research.net>
List-Help: <mailto:dtn-security-request@maillists.intel-research.net?subject=help>
List-Subscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=subscribe>
X-List-Received-Date: Tue, 19 May 2009 02:50:58 -0000

Hello Graham,

On Mon, May 18, 2009 at 7:28 PM, Graham Keellings (Leonix Solutions
Pte Ltd) <Graham@leonixsolutions.com> wrote:
> how secure is MAC? One person is claiming that it is not good enough and
> needs to supplemented by hashing which sounds strange to me since I thought
> that MAC _is_ strong one-way hashing.

MAC will not be secure from tampering without hashing in cases such as
chosen plaintext attacks.  You should join us via IRC in #noisebridge
on freenode.net ;-)
-- 
Kristian Erik Hermansen