ietf-openpgp
[Top] [All Lists]

Re: separation of signed and encrypted messages

2001-10-16 11:18:39

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

- ----- Original Message ----- 
From: "Michael Young" <mwy-opgp97(_at_)the-youngs(_dot_)org>
To: <ietf-openpgp(_at_)imc(_dot_)org>
Sent: Tuesday, October 16, 2001 1:31 PM
Subject: Re: separation of signed and encrypted messages


I think you may have two different uses of symmetric keys mixed up.
A symmetric key protects the private part of your public/private keypair;
it is the one generated from your passphrase (using a hash, such as MD5).
Another "session key" protects the contents of a message; for messages
encrypted to a public key, it is random, and involves no hashing or
passphrase.

yes,
am sorry,
did indeed confuse this and thought it was the 'same' symmetric key as the
session key,

thanks for clearing it up,

vedaal

-----BEGIN PGP SIGNATURE-----
Version: 6.5.8ckt http://www.ipgpp.com/
Comment: { Acts of Kindness better the World, and protect the Soul }
Comment: KeyID: 0x6A05A0B785306D25
Comment: Fingerprint: 96A6 5F71 1C43 8423  D9AE 02FD A711 97BA

iQEVAwUBO8x51WoFoLeFMG0lAQNVuwf9HeLrP/9K5zJGt2zPJd9dWs3Ag77U/VWu
6pULyqUQKOLXsjDi+MxpIa32V8afg7qMvuPKedmOhJpWeKvLpQPiB9GhlccW8u+2
KPPD180kv4oYZxAX2ci8i6w2Auo2BH2RC0Xy7kg3ogl1hMoMZSHb388lZVvncXyu
aYlJcbIW78L9yZz87+8KhxQaz8I9CqsqY0XXzairDAh+bLJzTH+RPQd3LkCwoJGe
O9I1hcE5yNogbhWb+R7qS5ywxlhCU8yy1dWiRSVdr9am4j2rPVHH+3XJ0asaIh4J
l6+QCAe6y6ES5GvJzrJrr2XfeEfC9em2GQwB4upGpOLqnx2XKP4VoQ==
=jB6A
-----END PGP SIGNATURE-----