[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: "The OpenPGP mail and news header" extenssion

To: Jeroen Massar <jeroen@xxxxxxxxx>
Subject: Re: "The OpenPGP mail and news header" extenssion
From: Ben Laurie <ben@xxxxxxxxxxxxx>
Date: Sun, 14 Aug 2005 16:52:29 +0100
Cc: ietf-openpgp@xxxxxxx
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
References: <> <> <> <> <> <> <> <> <> <>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx
User-agent: Mozilla Thunderbird 1.0.6 (Windows/20050716)

Jeroen Massar wrote:

On Sun, 2005-08-14 at 16:30 +0100, Ben Laurie wrote:

Jeroen Massar wrote:

On Sun, 2005-08-14 at 14:24 +0100, Ben Laurie wrote:

Jeroen Massar wrote:
<SNIP>

* sign(encrypt(message))
<SNIP>

More importantly, perhaps, Krawczyk has shown that, in general, sign then encrypt is insecure.

Which exact paper do you mean?
http://eprint.iacr.org/2001/045
Which nicely says, already in the abstract btw, "Thus, while we show the
generic security of SSL to be broken, the current standard
implementations of the protocol that use the above modes of encryption
are safe."

Sure. What does this have to do with OpenPGP's security?

--
>>>ApacheCon Europe<<<                   http://www.apachecon.com/

http://www.apache-ssl.org/ben.html http://www.thebunker.net/

"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff

Follow-Ups:
- Re: "The OpenPGP mail and news header" extenssion
  - From: Jeroen Massar

References:
- "The OpenPGP mail and news header" extenssion
  - From: David Srbecky
- Re: "The OpenPGP mail and news header" extenssion
  - From: Simon Josefsson
- Re: "The OpenPGP mail and news header" extenssion
  - From: David Srbecky
- Re: "The OpenPGP mail and news header" extenssion
  - From: Ian G
- Re: "The OpenPGP mail and news header" extenssion
  - From: David Srbecky
- Re: "The OpenPGP mail and news header" extenssion
  - From: Jeroen Massar
- Re: "The OpenPGP mail and news header" extenssion
  - From: Ben Laurie
- Re: "The OpenPGP mail and news header" extenssion
  - From: Jeroen Massar
- Re: "The OpenPGP mail and news header" extenssion
  - From: Ben Laurie
- Re: "The OpenPGP mail and news header" extenssion
  - From: Jeroen Massar

Prev by Date: Re: "The OpenPGP mail and news header" extenssion
Next by Date: Re: "The OpenPGP mail and news header" extenssion
Previous by thread: Re: "The OpenPGP mail and news header" extenssion
Next by thread: Re: "The OpenPGP mail and news header" extenssion
Index(es):
- Date
- Thread