17 Dec
2003
17 Dec
'03
11:17 p.m.
The best talks were probably by Ross Anderson (Robustness Principles for Public Key Protocols) and Adi Shamir (Myths and Realities of Cryptography).
One interesting aspect of Anderson's result is that it decisively breaks X.509 (he shows how to forge signatures in encrypt-before-signing protocols by computing a discrete log over the RSA modulus). I strongly recommend the paper. -- Mark Chen chen@intuit.com 415/329-6913 finger for PGP public key D4 99 54 2A 98 B1 48 0C CF 95 A5 B0 6E E0 1E 1D