[Top] [All Lists]

Re: Hash Collision Shield (subpacket def)

2005-02-17 19:22:43

On 17 Feb 2005, at 9:17 AM, David Shaw wrote:

I think we should not do this for several reasons, but those reasons
don't matter much: we already have signature notations.  If someone
wants to add arbitrary stuff in the middle of their signatures, they
can do that now.

I agree completely. Notations are the way to do this.

However, I also think this is a very bad idea. We already have pulled things out of OpenPGP because they could be used for subliminal channels, and there are a lot of people who think that DSA is the work of Satan because it has random data and thus subliminal channels.

However, if someone wishes to add in extra random data, then a notation is a fine way to do it.