===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/crypto.html,v
retrieving revision 1.23
retrieving revision 1.24
diff -c -r1.23 -r1.24
*** www/crypto.html	1998/11/14 20:23:31	1.23
--- www/crypto.html	1998/12/01 08:19:03	1.24
***************
*** 95,100 ****
--- 95,101 ----
  	spoofing attacks.
  <li>To generate salts for the various password algorithms.
  <li>For generating fake S/Key challenges.
+ <li>In isakmpd to provide liveness proof of key exchanges.
  </ul>
  
  <p>
***************
*** 112,122 ****
  e.g.
  <ul> 
  <li>In S/Key support to provide one time passwords.
! <li>In <a href=http://wserver.physnet.uni-hamburg.de/provos/photuris/>
! 	IPSec or Photuris</a> to authenticate the data origin of packets
  	and to ensure packet integrity.
  <li>For FreeBSD-style MD5 passwords (not enabled by default).
  <li>For TCP SYN cookie support (not enabled by default).
  </ul>
  
  <p>
--- 113,124 ----
  e.g.
  <ul> 
  <li>In S/Key support to provide one time passwords.
! <li>In IPsec, <a href=http://wserver.physnet.uni-hamburg.de/provos/photuris/>
! 	photurisd</a> and isakmpd to authenticate the data origin of packets
  	and to ensure packet integrity.
  <li>For FreeBSD-style MD5 passwords (not enabled by default).
  <li>For TCP SYN cookie support (not enabled by default).
+ <li>In libssl for digital signing of messages.
  </ul>
  
  <p>
***************
*** 127,140 ****
  a decryption key for data decryption. The security of a Cryptographic
  Transform should rely only on the keying material.<p>
  
! OpenBSD provides transforms like DES and Blowfish for the kernel and userland
! programs, which are used in many places like
  <ul>
  <li>In libc for creating Blowfish passwords.
! <li>In <a href=http://wserver.physnet.uni-hamburg.de/provos/photuris/>IPSec</a>
! 	to provide confidentiality for the network layer.
  <li>In kerberized telnet.
! <li>In Photuris to protect the exchanged packet content.
  </ul>
  
  <p>
--- 129,147 ----
  a decryption key for data decryption. The security of a Cryptographic
  Transform should rely only on the keying material.<p>
  
! OpenBSD provides transforms like DES, 3DES, Blowfish and Cast for the
! kernel and userland programs, which are used in many places like
  <ul>
  <li>In libc for creating Blowfish passwords.
! <li>In IPsec to provide confidentiality for the network layer.
  <li>In kerberized telnet.
! <li>In <a href=http://wserver.physnet.uni-hamburg.de/provos/photuris/>
! 	photurisd</a> and isakmpd to protect the exchanges where IPsec key
! 	material is negotiated.
! <li>In AFS to protect the messages passing over the network, providing
! 	confidentiality of remote filesystem access.
! <li>In libssl to let applications communicate over the de-facto standard
! 	cryptographically secure SSL protocol.
  </ul>
  
  <p>
***************
*** 142,148 ****
  <a href=/index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a>
  <a href=mailto:www@openbsd.org>www@openbsd.org</a>
  <br>
! <small>$OpenBSD: crypto.html,v 1.23 1998/11/14 20:23:31 deraadt Exp $</small>
  
  </body>
  </html>
--- 149,155 ----
  <a href=/index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a>
  <a href=mailto:www@openbsd.org>www@openbsd.org</a>
  <br>
! <small>$OpenBSD: crypto.html,v 1.24 1998/12/01 08:19:03 niklas Exp $</small>
  
  </body>
  </html>