[Announce] Attack against OpenPGP encryption

Atom Smasher atom at smasher.org
Fri Feb 11 22:05:17 CET 2005 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

as is obvious by my questions, i don't understand the math.

http://www.pgp.com/library/ctocorner/openpgp.html

  	Consequently, PGP Corporation, GnuPG, and Hush Communications are
  	all disabling the quick check for all public key-encrypted
  	messages and files. However, we are all presently leaving it in
  	for symmetric (passphrase) encrypted messages and files because we
  	believe the benefit of the quick check is greater than the
  	security risk from it. You will see this change in the next
  	software release from each group.

what about data that is encrypted with both a symmetric and asymmetric 
key?


  	In our discussions with Mister and Zuccherato about their attack,
  	we asked if they thought we should revise the protocol to address
  	the problem. They told us they didn't think it was necessary-that
  	an explanation of the issue and how to avoid it was good enough.

  	As implementers of OpenPGP systems, however, we think we should
  	update the protocol. People trust OpenPGP because we handle issues
  	before they become real-world problems...

how could this "become" a real world problem? is it conceivable that it 
might be leveraged into a stronger attack?


  	We are suggesting in the working group that we amend OpenPGP so
  	there is a new symmetric encryption system that has a secure quick
  	check.

like using a strong hash for the quick check? wouldn't that also benefit 
symmetric encryption with no significant increase in computational 
resources?



- -- 
          ...atom

   _________________________________________
   PGP key - http://atom.smasher.org/pgp.txt
   762A 3B98 A3C3 96C9 C6B7 582A B88D 52E4 D9F5 7808
   -------------------------------------------------

  	"Democracy and capitalism have very different beliefs about
  	 the proper distribution of power. One believes in a
  	 completely equal distribution of political power, 'one man,
  	 one vote', while the other believes that it is the duty of
  	 the economically fit to drive the unfit out of business and
  	 into economic extinction, and inequalities in purchasing
  	 power is what capitalist efficiency is all about. Individuals
  	 and firms become efficient to be rich. To put it in its
  	 starkest form, capitalism is perfectly compatible with
  	 slavery. The American South had such a system for more than
  	 two centuries. Democracy is not compatible with slavery."
  		-- Lester Thurow, The Future of Capitalism

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (FreeBSD)
Comment: What is this gibberish?
Comment: http://atom.smasher.org/links/#digital_signatures

iQEcBAEBCAAGBQJCDR4TAAoJEAx/d+cTpVciwaQH/AuJ09RtdT3Ta249w7ap8Btc
SlfsBaDTSGAQ65lZ9T0cD1T72m7uLB7cmqA3RuDPHYA0OtRDiwnZPqbvY2ApUVeg
qzi1FK7d6n2GpTVeqXAmpPqv0w6Ley+dkJTINVnSXEQJd1CluJ1G4ljWCOs4nYbP
HmB/wy0Eyq4M2wGncXnBxAiQ1Ck1iwVZpw4tvb40maI5wrQAK72YRcPjHDx8StM0
KiQp11JlkqXvlhOaayuJap7EHm1yzXQFMaekol9bf+gh1Le9NX0PfxvC2ShxR/R7
qyaaOyi8nmiiWq/FNuWmCkXMl+tXATfQKJns2YZzMFg2OIv8rP/o5TcKzCzrQhY=
=RN9Y
-----END PGP SIGNATURE-----

More information about the Gnupg-users mailing list