Genuine Crypto!
Ian Johnson
ukcrypto at chiark.greenend.org.uk
Tue, 23 May 2006 22:48:55 +0100
Having used the wrong account to send this, It is still awaiting moderators
approval, btw Outlook 2003 is broken :):
>-----Original Message-----
On Behalf Of Ian G Batten
>
>Minimal. And remember, these keys would only be used to bootstrap
>other keys, and the `public' keys would only be public in the sense
>that they'd be stored in my ERP system.
>My thinking was that the only meaningful attack would be one that could
>perform a man-in-the- middle attack within the timescales of a comms
>protocol, which is about 30s timeouts.
>I think that given no access to the public key, no access to the
>private key, a few hundred bytes of cyphertext and 30 seconds, 1024
>bits is enough for the lifespan of the product.
>But the issue of processor performance is a good one, so I'll look at
>Elliptic Curve.
Embedded.com has an overview on embedded small footprint e.c cryto:
http://www.embedded.com/showArticle.jhtml?articleID=177101463
Wollinger et. al. "Elliptic and hyperelliptic curves on embedded uP"
ACM TECS v3.3 pp509-533, 2004. might also be worth a look.
Regards,
Ian