This paper deals with new problems which arise in the application of cryptography to computer communication systems with large numbers of users. Foremost among these is the key distribution problem. We suggest two techniques for dealing with this problem. The first employs current technology and requires subversion of several separate key distribution nodes to compromise the system's security. Its disadvantage is a high overhead for single message connections. The second technique is still in the conceptual phase, but promises to eliminate completely the need for a secure key distribution channel, by making the sender's keying information public. It is also shown how such a public key cryptosystem would allow the development of an authentication system which generates an unforgeable, message dependent digital signature.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Baran, Paul, On Distributed Communications: IX. Security, Secrecy, and Tamper-Free Considerations, Santa Monica, CA: The Rand Corporation August 1964, (RM-3765-PR).
	2	Diffie, Whitfield and Martin E. Hellman, forthcoming paper to be submitted to the IEEE Transactions on Information Theory.
	3	Arthur Evans, Jr. , William Kantrowitz , Edwin Weiss, A user authentication scheme not requiring secrecy in the computer, Communications of the ACM, v.17 n.8, p.437-442, Aug. 1974  [doi>10.1145/361082.361087]
	4	Feistel, Horst, "Cryptography and Computer Privacy," Scientific American, Vol. 228, No. 5, May 1973, pp. 15--23.
	5	George B. Purdy, A high security log-in procedure, Communications of the ACM, v.17 n.8, p.442-445, Aug. 1974  [doi>10.1145/361082.361089]