Firewall Wizards mailing list archives

Re: Token based OTP: SafeWord or SecurID?

From: daw () mozart cs berkeley edu (David Wagner)
Date: 13 Dec 2000 01:25:36 GMT

Michael H. Warfield wrote:

      I thought that the SecureID algorithm had become known


I believe the algorithm has been known to some subset of "hackers" for
some time.  However, I don't know of too many "good guys" who have had
a chance to look at it (which presumably means that RSA is not able to
benefit from analysis from the open cryptographic community).

This suggests that keeping the algorithm secret may not have served its
intended purpose.  But then, secret design rarely does, when you are
talking about long-term widely-deployed commercial systems...

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

Re: Token based OTP: SafeWord or SecurID? Vin McLellan (Dec 08)
- Re: Token based OTP: SafeWord or SecurID? Ryan Russell (Dec 09)
  - Re: Token based OTP: SafeWord or SecurID? Vin McLellan (Dec 10)
    - Re: Token based OTP: SafeWord or SecurID? Michael H. Warfield (Dec 12)
    - Re: Token based OTP: SafeWord or SecurID? Ryan Russell (Dec 12)
    - Re: Token based OTP: SafeWord or SecurID? Michael H. Warfield (Dec 12)
    - Re: Token based OTP: SafeWord or SecurID? Ryan Russell (Dec 14)
    - Re: Token based OTP: SafeWord or SecurID? David Wagner (Dec 14)