[zeromq-dev] Proposal for ZeroMQ certificate format

Tony Arcieri bascule at gmail.com
Wed Oct 16 20:22:57 CEST 2013


On Wed, Oct 16, 2013 at 9:57 AM, Laurent Alebarde <l.alebarde at free.fr> wrote:
> Please, keep the public key secret.

This is where you really need to take a step back and look at the threat model.

Keep the public key secret from whom? You can't keep it secret from
someone who wants to perform a Diffie-Hellman handshake, since it's
one of the operands of Curve25519 scalar multiplication.

What is the use case for verifying the authenticity of the public key
in which you would also like to keep the public key secret?

-- 
Tony Arcieri



More information about the zeromq-dev mailing list