The answer referred to below has not yet appeared on my news reader.
Can someone who has seen it forward it to this list?
On first analysis, the attack in the thread forwarded by Lutz is not
really worth worrying about. You have to assume a combination of an
incredibly clueless user and an extremely powerful attacker who can
control the user's file accesses to a high degree.
Hal
From: Klima Vlastimil <v(_dot_)klima(_at_)decros(_dot_)cz>
To: "'ietf-openpgp(_at_)imc(_dot_)org'" <ietf-openpgp(_at_)imc(_dot_)org>
You can find our answer in the thread sci.crypt.
Tomas Rosa and Vlastimil Klima
Best regards
Dr.Vlastimil Klima, Cryptologist
DECROS Ltd. - ICZ a.s., V Olsinach 75, 100 97 Prague 10, Czech Republic
v(_dot_)klima(_at_)decros(_dot_)cz, http://www.decros.cz, http://www.i.cz
-----Original Message-----
From: lutz(_at_)iks-jena(_dot_)de [mailto:lutz(_at_)iks-jena(_dot_)de]
Sent: Tuesday, April 03, 2001 9:14 AM
To: ietf-openpgp(_at_)imc(_dot_)org
Subject: Interesting attack to DSA
The thread
news:20010402224016(_dot_)3984(_dot_)qmail(_at_)nym(_dot_)alias(_dot_)net and
above contains a
serious attack to DSA keys which seems to be indefeatable by the currently
recommented secret key data.