Hallo all, Am Wed, Aug 16, 2000 at 04:22:31PM +0200 schrieb Yuri Robbers:
Hi! ...
thank you, Yuri, for pointing out all this. It shows two important things: First, all the arguments brought forward here have been discussed before. Second, the real problem is the password approach itself. Its weaknesses are known for over TWO DECADES now (recommended reading: Robert Morris and Ken Thompson: Password Security: A Case History. In: Communications of the ACM 22(11), 1979, pp. 594-597). Still, nothing has changed. So please, if you want to improve things, do not discuss password encryption algorithms, discuss alternatives to the password scheme as a whole! (And remember what Karl Valentin, a german actor, once said (translation): "Everything has been said already, but not by everyone yet." ;-) ) Regards Johannes Geiger ----------------------------------------------------------------- Dipl.-Inform. Johannes Geiger geiger@informatik.tu-muenchen.de Technische Universität München http://wwwspies.in.tum.de/~geiger Fakultät für Informatik Tel.: 089/289-25723 Fax: -22037 D-80290 München Raum 3544, Eingang XI (Ecke Luisen-/Theresienstraße), 3. Stock -----------------------------------------------------------------