begin quoting [EMAIL PROTECTED] as of Thu, Aug 28, 2008 at 11:58:00PM -0700: > On Thu, Aug 28, 2008 at 11:03:01PM -0700, SJS wrote: > > The problem is, I think, that the way the fobs work is that the user > > needs a _short_ string to type in. > > Ug...yes that is a problem. What if you searched for a 64 bit hash and ran > *that* on your RSA digital signature? Then you'd convert your digital > signature to a tiny password of 16 hex digits.
If the server doesn't have the private key, how can it compute the signature in order to hash it? -- Using public-key crypto means sending over all of the data, not a subset. Stewart Stremler -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
