On Tue, Aug 11, 2015 at 11:41 AM, Werner Koch <wk(_at_)gnupg(_dot_)org> wrote:
On Tue, 11 Aug 2015 16:16, phill(_at_)hallambaker(_dot_)com said:
every option. If you are going to sign a 1Gb file then you are going to
need multiple trips through the digest function. Now there is of course a
This is not an option for OpenPGP! OpenPGP has been carefully designed
to allow its use in a pipe ("online" in current parlance). Any signing
function which requires multiple passes over the signed data is useless.
(I heard of encrypted(+signed) backups in the TiB range.)
That isn't what I was referring to, the signature mechanisms are using the
digests internally. So the 1Gb file will go through once. But the proof of
correctness for the signature algorithm itself requires internal digest
functions.
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp