ietf-openpgp
[Top] [All Lists]

Re: Encrypt then sign insecure?

2005-08-14 15:32:35

On Sun August 14 2005 12:36, Hal Finney wrote:

I have changed the subject line as this is in regard to Ben's citation
of Hugo Krawczyk's paper on the order of signing and encryption,
http://eprint.iacr.org/2001/045, also published in Crypto 01.

This paper doesn't apply to systems like OpenPGP which compose public
key signatures with public key encryption.  Rather, it investigates the
composition of symmetric encryption (e.g. AES) with MAC.

The same cannot be said of Davis' analysis of issues in
http://world.std.com/~dtd/sign_encrypt/sign_encrypt7.html


<Prev in Thread] Current Thread [Next in Thread>