ietf-openpgp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: pointers to openpgp-interop knowledge base?

2001-11-04 10:08:14
from [vedaal] [Permanent Link] 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

- ----- Original Message ----- 
From: "Peter Gutmann" <pgut001(_at_)cs(_dot_)auckland(_dot_)ac(_dot_)nz>
To: <ietf-openpgp(_at_)imc(_dot_)org>; <jkane89(_at_)softhome(_dot_)net>
Sent: Sunday, November 04, 2001 9:22 AM
Subject: Re: pointers to openpgp-interop knowledge base?



I've found that just using the various options of PGP 5.0 (which is
not-quite- OpenPGP), 6.5.x, and GPG will give you all the quirks and
peculiarities you need.  Once you've made sure you can read what they
produce, you should also check that they can read what you produce.

Peter.



short summary of intercompatibility, and incompatibilities:


messages from any pgp version can be read and verified by gpg {with the
idea plugin},
except if a shared key/split key system is used
[gpg can encrypt to a split key, but not sign or decrypt with a shared key
system]

messages from gpg using the throw-key id switch, cannot be read by 'any'
version
of pgp {except for Disastry's 2.6.3i multi 5}

messages from gpg using mdc, cannot be read by any pgp version prior to
7.xx
{6.5.8ckt is an exception, having a patch to ignore the mdc packets}

messages from 7.xx using twofish or aes, cannot be decrypted by pgp
versions prior
to 7.xx, but signatures can be verified
{again, 6.5.8ckt is an exception}

messages using an RSA v4 key, can be decrypted, and can be verified, by pgp
versions
prior to 7.xx, but, for some reason, not, if the message is 'both' signed
and encrypted

messages signed with ripemd-160 or sha-1, can be verified by all pgp
versions greater
than 2.6.x, even if they do not use them to sign with for a particular key
type


hope this is useful,

please correct if there are any mistakes or oversights,


thanks,

vedaal


-----BEGIN PGP SIGNATURE-----
Version: 6.5.8ckt http://www.ipgpp.com/
Comment: KeyID: 0x6A05A0B785306D25
Comment: Fingerprint: 96A6 5F71 1C43 8423  D9AE 02FD A711 97BA

iQEVAwUBO+Vzv2oFoLeFMG0lAQM+LQgAlt+ExlozIUSER30Ru/umGr/U3vPrtNzd
8naUSPJhjQEpB1usLpALy6Oj/uw8/2sGuXmjZ371+rR7Lr8IlI4/YMZw8ufKIjGN
zfPlOEHyd64SO3bDsWrzi9sJ+6dzSif/JA/t6Uxl2mDCWAxmhigdXfbEM/USYxAR
hPzjSjqEXLOhRuDxEe82Zpb9hhzShgayfJmTTR6dSqPRMbT92FVDs9pqYnlb1BwR
5dKWBG0dP6HIDWEnAaLyoOQodxoJA/b9wat81uEOvelvbHIwkKeKsI21uylHBy9u
QU01nlWe6tinjdzm+tiriqOBMjAbqSHahgYTnV9cCdPGygyMYXC8rg==
=tENm
-----END PGP SIGNATURE-----
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: pointers to openpgp-interop knowledge base?, Peter Gutmann
Next by Date:  Re: pointers to openpgp-interop knowledge base?, Len Sassaman
Previous by Thread:  Re: pointers to openpgp-interop knowledge base?, Peter Gutmann
Next by Thread:  Re: pointers to openpgp-interop knowledge base?, Len Sassaman
Indexes:  [Date] [Thread] [Top] [All Lists]