Anybody know details about Schneier's "flaw"?

ietf-openpgp

Anybody know details about Schneier's "flaw"?

2002-08-14 07:40:45

In http://netscape.com.com/2100-1105-949506.html?type=pt there is a vague 
mention of a problem:




Schneier released information Monday about a separate flaw in the PGP 
(Pretty Good Privacy) program that is freely available and used to encrypt 
messages sent over the Internet. 
Schneier and Jonathan Katz of the University of Maryland at College Park 
found a way an attacker could intercept a PGP encrypted message, modify it 
without decrypting it, dupe the user into sending it back, and retrieve 
the original message


Does anybody know more about this?  Can a minor improvement to the new 
-bis draft fix it?

--John

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Anybody know details about Schneier's "flaw"?, john . dlugosz <= Re: Anybody know details about Schneier's "flaw"?, Derek Atkins Re: Anybody know details about Schneier's "flaw"?, Rodney Thayer Re: Anybody know details about Schneier's "flaw"?, Derek Atkins Re: Anybody know details about Schneier's "flaw"?, Rodney Thayer Re: Anybody know details about Schneier's "flaw"?, Adam Back Re: Anybody know details about Schneier's "flaw"?, Carl Ellison Re: Anybody know details about Schneier's "flaw"?, Marc Mutz Re: Anybody know details about Schneier's "flaw"?, john . dlugosz Re: Anybody know details about Schneier's "flaw"?, Jon Callas Re: Anybody know details about Schneier's "flaw"?, Lutz Donnerhacke

Previous by Date:	Re: Primary subkey subpacket, disastry
Next by Date:	Re: Anybody know details about Schneier's "flaw"?, Derek Atkins
Previous by Thread:	Primary subkey subpacket, Timo Schulz
Next by Thread:	Re: Anybody know details about Schneier's "flaw"?, Derek Atkins
Indexes:	[Date] [Thread] [Top] [All Lists]