Mikey - Basic Key Transport and Exchange Methods

Basic Key Transport and Exchange Methods

MIKEY supports five different methods to set up a Common Secret (to be used as e.g. a session key or a session KEK):

  • Pre-Shared Key (PSK): This is the most efficient way to handle the transport of the Common Secret, since only symmetric encryption is used and only a small amount of data has to be exchanged. However, an individual key has to be shared with every single peer, which leads to scalability problems for larger user groups.
  • Public-Key: The Common Secret is exchanged with the help of public key encryption. In larger systems, this requires a PKI to handle the secure distribution of public keys.
  • Diffie-Hellman: A Diffie-Hellman key exchange is used to set up the Common Secret. This method has a higher resource consumption (both computation time and bandwidth) than the previous ones, but has the advantage of providing perfect forward secrecy. Also, it can be used without any PKI.
  • DH-HMAC (HMAC-Authenticated Diffie-Hellman): This is a light-weight version of Diffie-Hellman MIKEY: instead of certificates and RSA signatures it uses HMAC to authenticate the two parts to one another. DH-HMAC is defined in RFC 4650.
  • RSA-R (Reverse RSA): The Common Secret is exchanged with the help of public key encryption in a way that doesn't require any PKI: the initiator sends its public RSA key to the responder, which responds by selecting the Common Secret and then send it back to the initiator encrypted with the initiator's public key. RSA-R is defined in RFC 4738.

Read more about this topic:  Mikey

Famous quotes containing the words basic, key, transport, exchange and/or methods:

    What, then, is the basic difference between today’s computer and an intelligent being? It is that the computer can be made to see but not to perceive. What matters here is not that the computer is without consciousness but that thus far it is incapable of the spontaneous grasp of pattern—a capacity essential to perception and intelligence.
    Rudolf Arnheim (b. 1904)

    ‘The key is in the window, the key is in the sunlight at the
    window—I have the key—Get married Allen don’t take drugs—the key is in the bars, in the sunlight in the window.
    Love,
    your mother’
    Allen Ginsberg (b. 1926)

    One may disavow and disclaim vices that surprise us, and whereto our passions transport us; but those which by long habits are rooted in a strong and ... powerful will are not subject to contradiction. Repentance is but a denying of our will, and an opposition of our fantasies.
    Michel de Montaigne (1533–1592)

    I can exchange opinion with any neighbouring mind,
    I have as healthy flesh and blood as any rhymer’s had,
    But O! my Heart could bear no more when the upland caught the wind;
    I ran, I ran, from my love’s side because my Heart went mad.
    William Butler Yeats (1865–1939)

    The philosopher is in advance of his age even in the outward form of his life. He is not fed, sheltered, clothed, warmed, like his contemporaries. How can a man be a philosopher and not maintain his vital heat by better methods than other men?
    Henry David Thoreau (1817–1862)