Is there any published analysis of OpenPGP's MDC?

pgut001@cs.auckland.ac.nz (Peter Gutmann) Mon, 11 December 2006 03:49 UTC

Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1GtcAt-00026B-RU for openpgp-archive@lists.ietf.org; Sun, 10 Dec 2006 22:49:55 -0500
Received: from balder-227.proper.com ([192.245.12.227]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1GtcAs-0001Qc-EL for openpgp-archive@lists.ietf.org; Sun, 10 Dec 2006 22:49:55 -0500
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id kBB39JCa043396; Sun, 10 Dec 2006 20:09:19 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.13.5/8.13.5/Submit) id kBB39J4S043395; Sun, 10 Dec 2006 20:09:19 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-openpgp@mail.imc.org using -f
Received: from chico.itss.auckland.ac.nz (chico.itss.auckland.ac.nz [130.216.190.12]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id kBB39HOr043381 for <ietf-openpgp@imc.org>; Sun, 10 Dec 2006 20:09:18 -0700 (MST) (envelope-from pgut001@cs.auckland.ac.nz)
Received: from localhost (localhost.localdomain [127.0.0.1]) by chico.itss.auckland.ac.nz (Postfix) with ESMTP id 00403344A3 for <ietf-openpgp@imc.org>; Mon, 11 Dec 2006 16:09:10 +1300 (NZDT)
Received: from chico.itss.auckland.ac.nz ([127.0.0.1]) by localhost (smtpb.itss.auckland.ac.nz [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 03752-02 for <ietf-openpgp@imc.org>; Mon, 11 Dec 2006 16:09:10 +1300 (NZDT)
Received: from iris.cs.auckland.ac.nz (iris.cs.auckland.ac.nz [130.216.33.152]) by chico.itss.auckland.ac.nz (Postfix) with ESMTP id D91A03421C for <ietf-openpgp@imc.org>; Mon, 11 Dec 2006 16:09:08 +1300 (NZDT)
Received: from medusa01.cs.auckland.ac.nz (medusa01.cs.auckland.ac.nz [130.216.34.33]) by iris.cs.auckland.ac.nz (Postfix) with ESMTP id CF82337743 for <ietf-openpgp@imc.org>; Mon, 11 Dec 2006 16:09:08 +1300 (NZDT)
Received: from pgut001 by medusa01.cs.auckland.ac.nz with local (Exim 3.36 #1 (Debian)) id 1GtbXV-0007ZD-00 for <ietf-openpgp@imc.org>; Mon, 11 Dec 2006 16:09:13 +1300
From: pgut001@cs.auckland.ac.nz (Peter Gutmann)
To: ietf-openpgp@imc.org
Subject: Is there any published analysis of OpenPGP's MDC?
Message-Id: <E1GtbXV-0007ZD-00@medusa01.cs.auckland.ac.nz>
Date: Mon, 11 Dec 2006 16:09:13 +1300
X-Virus-Scanned: by amavisd-new at mailhost.auckland.ac.nz
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>
X-Spam-Score: 0.5 (/)
X-Scan-Signature: 08e48e05374109708c00c6208b534009

Subject line says it all, is there any published analysis of the
strengths/weaknesses of OpenPGP's use of MDCs (encrypted SHA-1 hash) for
private keys and data?  I've seen various informal arguments that it should be
OK (and also informal ones that it may not be OK), but nothing definitive.

Peter.