Subpackets

David Shaw dshaw@jabberwocky.com
Thu Jul 18 23:21:01 2002


On Wed, Jul 17, 2002 at 02:35:58AM +0000, Brian M. Carlson wrote:

> I noticed that the Issuer KeyID is not a hashed subpacket. Is there
> a particular reason this is so? Is there a reason to not hash any
> subpacket?

I imagine it is because there is no real benefit to protecting it (no
harm either, of course).

The end result of an attacker changing the keyid in the unhashed area
and the end result of an attacker changing the keyid in the hashed
area is the same.

David

-- 
   David Shaw  |  dshaw@jabberwocky.com  |  WWW http://www.jabberwocky.com/
+---------------------------------------------------------------------------+
   "There are two major products that come out of Berkeley: LSD and UNIX.
      We don't believe this to be a coincidence." - Jeremy S. Anderson