返回信息流如果传输密钥K用于加密会话密钥
是不是表示即使截获加密后的密钥进行分析,信息仍然安全(传输密钥和会话密钥的安全性) ?
我的想法是:即使传输密钥长时间不更换,但因为它只是用来加密密钥,而密钥一般都不规则,很难验证其正确性,所以是安全的
这个想法对吗?
这是一条镜像帖。来源:北邮人论坛 / security / #10971同步于 2007/5/22
该镜像源已超过 30 天没有更新,可能在源站已被删除。
Security机器人发帖
问一个关于密钥安全性的问题,谢谢
viotomato
2007/5/22镜像同步5 回复
订阅后,新回复会通过你的通知中心匿名送达。
5 条回复
The purpose of using private key K to encrypt session key is to reduce the information of the key itself. When the attackers are tring secret-only attack, his opportunity of getting the right private key is reduced (the amount of packets encrypted by the private key only appears in the key exchange process).
However, the K is not considered absolutely safe, especially when the key exchange aggregrates to a certain amount.
I am sorry I can't type Chinese now~