Re: Stupid hash question?

ietf-openpgp

Re: Stupid hash question?

2005-05-31 02:16:37


Konrad Rosenbaum wrote:

Ben Laurie said:

As I have previously stated, my keyring contains Elgamal signatures. I'm
sure I'm not alone in this. I want to be able to check them. I think its
fine to deprecate them, but refusing to describe them is just annoying.



As far as I recall it is PKCS#1-v1.5 - just like RSA.

However, these signatures are not worth anything, since they leak the key
and are easily forgable after the first signature. So bothering with
verifying them is nonsense in my opinion. Cryptographically an Elgamal
signature on something tells you as much about that something as a coffee
stain on a printout of it.


This is a reason to deprecate them, not a reason not to describe them.

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Stupid hash question?, Ben Laurie Re: Stupid hash question?, Konrad Rosenbaum Re: Stupid hash question?, Ben Laurie Re: Stupid hash question?, Peter Gutmann Re: Stupid hash question?, Ben Laurie Re: Stupid hash question?, Peter Gutmann Re: Stupid hash question?, Ben Laurie Re: Stupid hash question?, Konrad Rosenbaum Re: Stupid hash question?, Ben Laurie Re: Stupid hash question?, Konrad Rosenbaum Re: Stupid hash question?, Ben Laurie <= Re: Stupid hash question?, Jon Callas Re: Stupid hash question?, Werner Koch Re: Stupid hash question?, Ian G Re: Stupid hash question?, Werner Koch Re: Stupid hash question?, "Hal Finney" Re: Stupid hash question?, Ben Laurie Re: Stupid hash question?, "Hal Finney"

Previous by Date:	Re: Stupid hash question?, Konrad Rosenbaum
Next by Date:	Re: Stupid hash question?, Jon Callas
Previous by Thread:	Re: Stupid hash question?, Konrad Rosenbaum
Next by Thread:	Re: Stupid hash question?, Jon Callas
Indexes:	[Date] [Thread] [Top] [All Lists]