Bodo Moeller <Bodo_Moeller(_at_)public(_dot_)uni-hamburg(_dot_)de> writes:
Then why not dump plain ElGamal encryption in favor of DHAES (see
http://www.cse.ucsd.edu/users/mihir/papers/pke.html), DHAES being used
on whole messages, not just session keys? (DHAES is basically ElGamal
We can't do this because the OpenPGP design allows for more than one
recipient and therefore we need a session key.
It seems that the whole MDC thread has come to an end and we drop it
completely?
--
Werner Koch at guug.de www.gnupg.org keyid 621CC013