-----BEGIN PGP SIGNED MESSAGE-----
Without handling instructions that cause the signature to be removed,
someone forwarding the
message could cause trouble for the original sender.
I raised this as an issue a few years back on the PGP MIME list, but
the folks there were
unconvinced. It seems they wanted to be able to keep the signature
Should we have a selectable option on sign-encrypt that specifies
that the signature must be
removed from the plaintext after verifying it?
From: John Dlugosz
If forwarding the decrypted plaintext also removed the signature,
would be less trouble. The content could be reputiated, since it
distinguised from the forwarder just making it up.
But I think PGP uses "sign, then encrypt" which means software
decrypt but leave the signature intact. As I recall, this was
be a non-problem with respect to re-targeting, because you can put
recipient's name in the message at the application level. e.g.
is part of the message, so it can't be mistaken as a message to
that doesn't handle the issue of private information in the
possible for Sue to reveal the signed message to someone else, who
verify the signature, without needing Sue's key. I would prefer if
were impossible--without Sue's key, the message can't be
-----BEGIN PGP SIGNATURE-----
Version: PGP 7.1.1
-----END PGP SIGNATURE-----