Re: [Nbd] Easier use, authentication
- To: Folkert van Heusden <folkert.van.heusden@...17...>
- Cc: nbd-general@lists.sourceforge.net, Wouter Verhelst <w@...112...>
- Subject: Re: [Nbd] Easier use, authentication
- From: Alex Bligh <alex@...872...>
- Date: Mon, 26 Sep 2011 11:35:17 +0100
- Message-id: <B2C35EDE182E93580C0A92E4@...873...>
- Reply-to: Alex Bligh <alex@...872...>
- In-reply-to: <CAFDOyVCWE4L3YOxDNb57BBY8bsj4mZGaexNmZfB75onCGiq1pQ@...18...>
- References: <CAEjYwfXAjOwZ-=igJ6Ojyti43STga3uRwNTfjmzG4Eu8h2xmVg@...18...> <20110925222423.GB22107@...3...> <CAEjYwfVE3GhmDz_UpocvQPrzJpvLk47mRpVGBRF9PrRV2eBfXg@...18...> <20110926101148.GB4205@...3...> <6577973721D7B20FC94597A6@...873...> <CAFDOyVCWE4L3YOxDNb57BBY8bsj4mZGaexNmZfB75onCGiq1pQ@...18...>
--On 26 September 2011 12:30:48 +0200 Folkert van Heusden
<folkert.van.heusden@...17...> wrote:
we'll only do one hash
at the beginning of the connection
Hopefully you'll do at least 2, and (if authenticating the other way) 4!
But yes.
Why 2/4?
2 because you have to carry out the hash on both ends in order to
compare them.
4 because as I said, you may wish to authenticate server to client,
as well as client to server.
The remark was slightly facetious as even 4 very slow hash operations
would be just fine. It's an O(0) optimisation.
If you're not sure about the hash collisions, use a hash with more
bits. E.g. sha512.
I don't think hash collisions have anything to do with it.
--
Alex Bligh
Reply to: