Overview

Artifact ID:	67c828aefdefa20b86b1f8e6a104b2a08e3aa7ac
Page Name:	Experiment: mmmv_symsig_t1
Date:	2017-10-08 21:43:14
Original User:	martin_vahi
Parent:	8f30bf4dad2b04824ebe884c9f37b0edb76bf75c (diff)
Next	538d8fc89f53a6af081f7c4604b0321104f111b3

Content

This page is currently being edited.

The mmmv_symsig_t1 wraps symmetric key encryption command line tools and implements a signing system, where parties, who have never met directly for a key exchange can probabilistically authenticate each other. The feasibility of using one-time-pads or one-time-pad like ciphers is based on the fact that a year 2017 price for 1GiB of USB-stick based flash memory costs about 1€. With the exception of metadata related security issues, one-time-pad like ciphers tend to eliminate security flaws at the encryption algorithm side.

It's worth to note that if both keys of a public encryption algorithm are bundled together and the whole pair is kept secret the way symmetric keys are kept secret, then public key encryption algorithms can be used as symmetric key encryption algorithms. That allows the "standard" tools like the GNU Privacy Guard to be used in the role of the symmetric key encryption algorithm implementation.

Overview

End users(hereafter: EnU), including the Bob and the Alice, individually meet with a key exchange service provider (hereafter: KXS). The KXS gives each EnU multiple GiB worth of symmetric keys that are shared only between the KXS and the EnU. If the EnUs have not met with each other for a key exchange, then the KXS forms a central hub that decrypts the ciphertext of one EnU and encrypts the cleartext for another EnU. That is to say, if the Bob and the Alice use only a single KXS, then the KXS acts like the Eve, when the Eve conducts a man-in-the-middle attack.