Problems with private keyring?
Taral
taral at taral.net
Thu Mar 22 23:01:03 CET 2001
On Thu, Mar 22, 2001 at 10:44:25PM +0100, Florian Weimer wrote:
> Their attack doesn't work with these checks in place. However, there
> are other attacks which involve modifying public DSA parameters. I'm
> not a cryptanalyst and I've just started reading about DSA (and
> already decided that I don't like it at all, especially the OpenPGP
> incarnation), so I'm not in the position to claim that a specific set
> of consistency checks is safe or not. Releasing a patch which is
> solely based on consistency checks would imply such a statement.
Agreed. (Nothing's wrong with DSA so long as you can ensure that k is
unrecoverable.) This is why I believe that it would be better to simple
sign the key materian _in toto_, thus providing protection equal to that
of a public key.
--
Taral <taral at taral.net>
Please use PGP/GPG to send me mail.
"Never ascribe to malice what can as easily be put down to stupidity."
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 248 bytes
Desc: not available
Url : /pipermail/attachments/20010322/89091d91/attachment.bin
More information about the Gnupg-devel
mailing list