"Neal H. Walfield" <neal(_at_)walfield(_dot_)org> writes:
Bryan Ford proposed getting rid of all unencrypted meta-data. In
particular, he wanted to get rid of the recipients / number of
recipients.
I'm not at all sure how you would remove the number of recipients; you
still need N encrypted session key packets. Therefore anyone reading
the message can count the ESKs.
There are some practical difficulties with this approach,
which I mentioned above.
My proposal is a blue sky idea to avoid having to try to decrypt a
message with every secret key while (hopefully) making it more
difficult to get at the list of recipients.
Is it really worth the overhead?
Neal
-derek
--
Derek Atkins 617-623-3745
derek(_at_)ihtfp(_dot_)com www.ihtfp.com
Computer and Internet Security Consultant
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp