Quote:
Originally posted by theknife
with regards to security and the posting of keys, i was under the impression that it did not matter if our keys were public, because in order for someone else to get on the network, we would also have to load their key. therefore, some intruder could have everyone's key but as long as no one loaded his key, he would never have access. this is not correct?
|
With someone's public key, you could decode the traffic encrypted using that person's key. The traffic would have to be sniffed on the wire, as you can't be an active participant of the network without someone accepting your key.
The network name prevents network collisions, so that if you inadvertantly join two networks they won't crosscontaminate each other.
There are also session keys which prevent decoding of recorded encrypted streams, but I don't know much about this scheme.