RE: secure sign & encrypt

ietf-openpgp

RE: secure sign & encrypt

2002-05-22 03:34:10


Jon Callas <jon(_at_)callas(_dot_)org> wrote:

It's important to understand what's in the envelope and what 
is not in the
envelope. The ESK is like the address on an envelope. It's not in the
envelope. It's outside the envelope and is not protected.


That is a good picture of what is the problem. The solution I proposed
is to put a copy of the address(es) on the outside of the envelope also
inside the envelope. If what is on the outside do not match what is on
the inside the user should get a warning that the message is (most probably)
encrypted by some one else than the person that signed the message.

-- 
Terje Bråten

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
secure sign & encrypt, Terje Braaten Re: secure sign & encrypt, Hal Finney RE: secure sign & encrypt, Terje Braaten Re: secure sign & encrypt, vedaal Re: secure sign & encrypt, Derek Atkins Re: secure sign & encrypt, vedaal Re: secure sign & encrypt, Derek Atkins Re: secure sign & encrypt, vedaal Re: secure sign & encrypt, Jon Callas RE: secure sign & encrypt, Terje Braaten RE: secure sign & encrypt, Terje Braaten <= RE: secure sign & encrypt, Terje Braaten Re: secure sign & encrypt, vedaal Re: secure sign & encrypt, Derek Atkins RE: secure sign & encrypt, Terje Braaten RE: secure sign & encrypt, Terje Braaten RE: secure sign & encrypt, Hal Finney RE: secure sign & encrypt, Terje Braaten Re: secure sign & encrypt, Jon Callas RE: secure sign & encrypt, Terje Braaten Re: secure sign & encrypt, Derek Atkins

Previous by Date:	Re: secure sign & encrypt, Jon Callas
Next by Date:	RE: secure sign & encrypt, Terje Braaten
Previous by Thread:	RE: secure sign & encrypt, Terje Braaten
Next by Thread:	RE: secure sign & encrypt, Terje Braaten
Indexes:	[Date] [Thread] [Top] [All Lists]