Lutz Jaenicke <[EMAIL PROTECTED]> writes:
> On Thu, May 04, 2000 at 10:39:05AM +0100, Mark J Cox wrote:
> > > Which is about to expire in a few months, if I remember correctly :-)
> >
> > Then we get into the new MultiPrimes patent instead. For details:
> > http://www.apacheweek.com/issues/00-04-21#rsa2000
>
> Well, but then, who cares?
>
> The MultiPrime patent does not cover the "old" RSA techniques. It will
> only hit me, when I want to use this new technique.
> It is not even part of the TLS standard, such that all products offering
> SSL ("old" techniques) or TLS (upcoming standard) will interoperate with
> old "unlicensed" software.
> As of today, with Netscape and InternetExplorer having nearly all of the
> market: as long as they support "old" RSA, we won't miss MultiPrime support.
> How long is SSLv2 outdated? It is still in these products...
Actually, the situation is even better than this. Multi-prime is
an optimization on the private key side only. The public key side
(i.e. encryption or verification) doesn't change. In the common
case, only the server does private key operations. Thus, if you want
to optimize your server, you might choose to use multiprime but
you would still interoperate with old clients.
In the face of hardware acceleration, this doesn't strike
me as a very importantd development.
-Ekr
--
[Eric Rescorla [EMAIL PROTECTED]]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
