Re: Forward secrecy

ietf-openpgp

Re: Forward secrecy

2000-07-07 10:01:46

from [hal]

    Expired public encryption keys MUST be
    deleted by users and keyservers to remove information on old key
    pairs.


Does this really add enough security to be worth a MUST?  An expired
public key should not significantly threaten the contents of previously
encrypted messages.  Furthermore, such deletions can provide at most
"security by obscurity" since attackers could easily have made their
own archives of the public keys on the key servers.

Hal

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Forward secrecy, Ian Brown Message not available Re: Forward secrecy, Ben Laurie Re: Forward secrecy, Adam Back Re: Forward secrecy, Ian BROWN Re: Forward secrecy, Will Price Re: Forward secrecy, Ian BROWN Re: Forward secrecy, Will Price Re: Forward secrecy, hal <=

Previous by Date:	Re: Forward secrecy, Ian BROWN
Next by Date:	Re: Forward secrecy, Will Price
Previous by Thread:	Re: Forward secrecy, Will Price
Next by Thread:	5.1 Clarification re padding, Erron Criddle
Indexes:	[Date] [Thread] [Top] [All Lists]