[messaging] "Pseudoword" base32 fingerprints

Robert Ransom rransom.8774 at gmail.com
Wed Feb 5 18:26:03 PST 2014


On 2/5/14, Tony Arcieri <bascule at gmail.com> wrote:
> On Wed, Feb 5, 2014 at 5:52 PM, Robert Ransom
> <rransom.8774 at gmail.com>wrote:
>
>> Trevor is talking about generating a 'human-friendly' human-verifiable
>>  'fingerprint' of a *public* key, not generating a password from which
>> a *symmetric* key can be derived.

> If you can generate a symmetric key, you can MAC the public keys with it.

If you're talking about authenticating an interactive connection, I
agree that that's an entirely different problem from representing
and/or transmitting a fingerprint offline which can later be used to
authenticate a public key non-interactively.


Robert Ransom


More information about the Messaging mailing list