At 12:46 PM -0700 9/24/97, Adam Back wrote:
For an RSA encrypted key packet the encrypted value is less than N,
the recipients RSA modulus by definition. That is the RSA encrypted
session key will be in the range 0..N-1. That's not uniform. An
opponent seeing lots of otherwise "stealthed" messages would be able
to accumulate this leaked information and reduce the plausible
deniability of the covert correspondents.
Of course the value does not have to be less than N. If the value is V,
then the transmitted value could be xN+V for any integer x. The receiver
can do the modular reduction.
-------------------------------------------------------------------------
Bill Frantz | Internal surveillance | Periwinkle -- Consulting
(408)356-8506 | helped make the USSR the | 16345 Englewood Ave.
frantz(_at_)netcom(_dot_)com | nation it is today. | Los Gatos, CA
95032, USA