[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FYI] (Fwd) Groove, and GAK

------- Forwarded message follows -------
From:           	"Adrian Midgley" <akm@92tr.freeserve.co.uk>
To:             	"ukcrypto" <ukcrypto@chiark.greenend.org.uk>
Subject:        	Groove, and GAK
Date sent:      	Thu, 8 Feb 2001 20:12:11 -0000
Send reply to:  	ukcrypto@chiark.greenend.org.uk


Groove Networks have published some quite detailed backgrounders on
their peer-to-peer security architecture;  worthwhile reading.

     http://www.groove.net/feature/security/securitybrief.pdf (short
and fluffy)
     http://www.groove.net/feature/security/ch18.gtml (long and

To summarise:  they're using some interesting techniques to secure
Groove shared space ("distributed virtual object store") and instant
messaging collaborations, implemented on pretty reputable algorithms
(1536-bit-modulus ElGamal, 192-bit MARC4, HMAC/SHA1 and DH).

There's a Q&A forum (registration required to post), at

In the UK this raises some interesting issues around GAK;  because of
its decentralisation, and because this seems to be the first
_consumer_ communications tool with such strong crypto designed for
"zero effort, zero configuration" security.


------- End of forwarded message -------