ietf-openpgp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: "The OpenPGP mail and news header" extenssion

2005-08-14 08:45:16
from [Jeroen Massar] [Permanent Link] 
On Sun, 2005-08-14 at 16:30 +0100, Ben Laurie wrote:

Jeroen Massar wrote:

On Sun, 2005-08-14 at 14:24 +0100, Ben Laurie wrote:


Jeroen Massar wrote:


<SNIP>


* sign(encrypt(message))


<SNIP>


More importantly, perhaps, Krawczyk has shown that, in general, sign 
then encrypt is insecure.



Which exact paper do you mean?


http://eprint.iacr.org/2001/045


Which nicely says, already in the abstract btw, "Thus, while we show the
generic security of SSL to be broken, the current standard
implementations of the protocol that use the above modes of encryption
are safe."

Also, to really take care of your worries, one could do:
encrypt(sign(encrypt(message)) which gives the same properties I
specified before, although with some overhead. It will actually give an
additional property that only the receiver is known and nobody else can
figure out who send the message.

Greets,
 Jeroen

Attachment: signature.asc
Description: This is a digitally signed message part

[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Applicability of signed messages as proof of sending, Ben Laurie
Next by Date:  Re: "The OpenPGP mail and news header" extenssion, Ben Laurie
Previous by Thread:  Re: "The OpenPGP mail and news header" extenssion, Ben Laurie
Next by Thread:  Re: "The OpenPGP mail and news header" extenssion, Ben Laurie
Indexes:  [Date] [Thread] [Top] [All Lists]