RE: Recipient-verifiable messages, was: forwarding an encrypted P GP message is useless

Terje Braaten <Terje.Braaten@concept.fr> Thu, 30 May 2002 06:03 UTC

Message-ID: <1F4F2D8ADFFCD411819300B0D0AA862E29ABFD@csexch.Conceptfr.net>
From: Terje Braaten <Terje.Braaten@concept.fr>
To: ietf-openpgp@imc.org
Subject: RE: Recipient-verifiable messages, was: forwarding an encrypted P GP message is useless
Date: Thu, 30 May 2002 07:48:24 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
Content-Transfer-Encoding: 8bit

moeller@cdc.informatik.tu-darmstadt.de wrote:
> 
> Hal Finney <hal@finney.org>:
> > Adam Back writes:
> 
> >> What we proposed is related.  Rather
> >> than the normal encrypted signed message:
> >>
> >> 	Encrypt_Bob(K), Encrypt(K, Sign_Alice(Hash(msg)), msg)
> >>
> >> we proposed:
> >>
> >> 	Encrypt_Bob(K), Encrypt(K, Sign_Alice(Hash(K||Bob_PK)), msg)
> >>
> >> with the additional restriction that the encryption mode 
> should be one
> >> of the MDC modes (ie appended MAC with K outside encryption, or
> >> appended hash of msg inside encryption).

What a wonderful solution. Hello everybody, we go ahead and change
the next version of the protocol to this. Ok?

-- 
Terje Bråten

RE: Recipient-verifiable messages, was: forwardin… Terje Braaten
Re: Recipient-verifiable messages, was: forwardin… Derek Atkins