On the other hand, Diffie-Hellman is generally used in interactive
applications, such as SSL, not batch applications like email encryption -
it's clearly the right choice for those applications.
Open-PGP is probably better off using ElGamal, but it's not a no-brainer.
On Fri, 31 Oct 1997, David P. Kemp wrote:
If compatibility with pgp2.6, etc, is a MUST, then RSA is a MUST. Is
this acceptable? Have we already made a decision on RSA, or has the
IETF already pronounced (via the S/MIME group) a leaning on this?
The TLS group has decided that there is only one MUST algorithm,
DSA/DH/3DES, despite the fact that nearly 100% of the installed base
of SSL currently uses RSA/RC4.
At 04:43 PM 10/31/1997 +0200, Markku-Juhani Saarinen wrote:
We have chosen the exactly same MUST algorithms in IETF-SecSh work
Bill Stewart, stewarts(_at_)ix(_dot_)netcom(_dot_)com
Regular Key PGP Fingerprint D454 E202 CBC8 40BF 3C85 B884 0ABE 4639