ietf-openpgp
[Top] [All Lists]

Re: Speculative Mode for KeyIDs of all zeroes

1997-12-04 02:06:11
At 11:20 PM 12/3/97 -0800, you wrote:

If
you are worried about being tortured, the best defense is for Big Brother
to be unable to verify the existence of a PGP message at all.  Some stego
programs already kludge this by removing various message headers, but I
don't have references to the techniques handy.  I would like to see some
kind of "stealth message" format defined, where the first N bits of the
message (N corresponding to the length of the asymmetric key you are using
to speculatively decrypt) contain the session key, signature keyid, message
length, symmetric algorithm ID, hash algorithm ID, random padding, and
other such details so that if you stego a .WAV file, the only way to tell
is to collect the first 2048 sample LSBits and try decrypting them with
your private key(s) to see if a message header shows up.  Otherwise, all
you see is random-looking data that may or may not be a PGP message.

Even more substantial kudos.