On Mon, Feb 06, 2006 at 07:00:41PM -0500, vedaal(_at_)hush(_dot_)com wrote:
On Mon, 06 Feb 2006 17:38:01 -0500 Hal Finney <hal(_at_)finney(_dot_)org>
wrote:
Note that V3 keys only support ciphers with a block size of 8
bytes, so
I think it is OK to explicitly say "8 octets" here.
are v4 keys different in this respect ?
(i.e., is there any cipher currently within the open pgp standard
that v4 keys support that v3 keys could not?
The difference is that in the case of v4 keys, the secret part is encrypted
like a regular byte stream, with no regard to the contents. In the case of
V3, there were resynchronization steps introduced between the MPIs.
I sincerely hope that this whole mess will be cleaned up with V5, where
there seems to be a consensus not to implement encrypted private key packets
at all, but put unencrypted private key packets into integrity protected
symmetrically encrypted packets instead.
Personally, I would suggest removing encrypted packet formats from the
standard altogether; there is no reason to stay interoperable with those. If
one wants to export old keys, they should remove the encryption first. New
implementations should enclose unencrypted private keys (of eiter version)
in symmetrically encrypted packets with MDC.
--
Daniel