All, thanks for your replies and arguments.
Authentication subject has been raised in connection with negative examples in analog repeater networks and AMPR in the past. Until then while the repeater works locally - security is a problem of repeater's owner. But as soon as this repeater will be connected through the Internet to other D-Star networks - this problem of not authorised use becomes the general for all D-Star repeater's admins. Task - to minimise probability of similar event. We can assume that a weak place in security is an air interface of local repeater (at confidence links between Gateways). Therefore: - authentication can work locally on a concrete repeater - authentication takes place only at process of registration - It is not required distribute authentication data base on all network - It is not required send keys over the air. For realisation of authentication - the simple mechanism is used that does not demand PGP and its administrations. - secret K value in the hidden memory of radio - secret K value used by the authentication module - only radio owner and repeater owner know K value - K value cannot be read from radio but can be rewrite by special software Radio and repeater should have a software authentication module which provides performance of D-Star Authentication Algorihm. Function of authentication can be switch on/off in radio and repeater according local law. It seems that most of these ideas for Wish list. 73 de Karen, RA3APW
