ietf-openpgp
[Top] [All Lists]

More spec-ulations

1998-03-25 21:41:51
1. If we are going to have a lame cipher for conventional encryption, why
not also have one for the PK algorithms, e.g. DH, RSA, and the
conventional key material plaintext as an MPI integer (for exportable
samples).  Would we need this for hashes and/or signatures too?  Any weak
(ROT-N like) alternatives?

2. There should be a table of key material lengths indexed by the
conventional algorithm number, e.g.  IDEA/3DES/CAST is 16/24/16.  I assume
the PKCSwhatever padding is specified too.  I have plaintext as zero (will
this break the PK algorithm to send a length of zero?), Blowfish as 16,
ROT-N as 8 (maybe should be 1?), and Safer/SK128 as 16.

3. Are multiple signatures allowed similar to multiple recipient keys?
(The spec is at work and I am not right now)  E.g. 1psig(k1) 1psig(k2)...
signed text ... sig(k1) sig(k2) ... And would the order be important?

This would be hard to implement, but it sounds like this would be legal.

--- reply to tzeruch - at - ceddec - dot - com ---


<Prev in Thread] Current Thread [Next in Thread>