At 08:51 PM 11/16/96 -0800, "Joshua E. Hill" <jehill@w6bhz.calpoly.edu> wrote:

I'm trying to think of a function to replace UNIX's crypt(3). My design criteria are as follows: ... NMAC(k, m) = H(k1, H(k2, m)) .... Would (n . P . n ) be better?

NMAC is probably a bit stronger, but the real question is why you want to reinvent crypt(3). It was fine for logging in from a hardwired or dialup dumb terminal, but in a network environment you really need some sort of one-time password system. S/Key, for instance. # Thanks; Bill # Bill Stewart, +1-415-442-2215 stewarts@ix.netcom.com # You can get PGP outside the US at ftp.ox.ac.uk