ietf-openpgp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: "The OpenPGP mail and news header" extenssion

2005-08-14 08:30:55
from [Ben Laurie] [Permanent Link] 

Jeroen Massar wrote:

On Sun, 2005-08-14 at 14:24 +0100, Ben Laurie wrote:


Jeroen Massar wrote:


<SNIP>


* sign(encrypt(message))


<SNIP>
More importantly, perhaps, Krawczyk has shown that, in general, sign then encrypt is insecure. 


Which exact paper do you mean?


http://eprint.iacr.org/2001/045


Also note that when you say that that is insecure you are also saying
that either/both the signing and/or the encryption are insecure in which
case the solution to the problem should be sought in a different
place...


I have no idea what you mean.

--
>>>ApacheCon Europe<<<                   http://www.apachecon.com/

http://www.apache-ssl.org/ben.html       http://www.thebunker.net/

"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: "The OpenPGP mail and news header" extenssion, Jeroen Massar
Next by Date:  Re: Applicability of signed messages as proof of sending, Ben Laurie
Previous by Thread:  Re: "The OpenPGP mail and news header" extenssion, Jeroen Massar
Next by Thread:  Re: "The OpenPGP mail and news header" extenssion, Jeroen Massar
Indexes:  [Date] [Thread] [Top] [All Lists]