RE: secure sign & encrypt

"Dominikus Scherkl" <Dominikus.Scherkl@glueckkanja.com> Thu, 23 May 2002 15:50 UTC

content-class: urn:content-classes:message
Subject: RE: secure sign & encrypt
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Thu, 23 May 2002 17:40:45 +0200
Message-ID: <2F89C141B5B67645BB56C038537578821B58CA@guk1d002.glueckkanja.org>
Thread-Topic: secure sign & encrypt
Thread-Index: AcICZSy4NfgnE8BTTXuIkzX1WZqMjQACkHIg
From: Dominikus Scherkl <Dominikus.Scherkl@glueckkanja.com>
To: Terje Braaten <Terje.Braaten@concept.fr>
Cc: ietf-openpgp@imc.org
Content-Transfer-Encoding: 8bit
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
Content-Transfer-Encoding: 8bit

Hi!

> > Your proposal for an extra packet does not address this alleged
flaw.
> > Note that Alice could sign a message saying "encrypted to 
> > Bob", and then
> > encrypt and send the message to Charlie, thus framing Bob for breach
> > of confidence.
> 
> No, because then Charlie would know it was something fishy going on.
> He would not now if Alice or Bob (or some one else) was to blame,
> but he would get a warning message saying that this is an invalid
> signed & encrypted message.
Hey, this is an attack at _Bob_ - Charlie don't needs to be nice!
The simple possibility of such attacks discredits the trust in beeing
the original receiver of a message, so we gain nothing!

Best Regards.
-- 
Dominikus Scherkl
dominikus.scherkl@glueckkanja.com

secure sign & encrypt Terje Braaten
Re: secure sign & encrypt Hal Finney
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt vedaal
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt Derek Atkins
Re: secure sign & encrypt vedaal
Re: secure sign & encrypt Derek Atkins
Re: secure sign & encrypt vedaal
Re: secure sign & encrypt Jon Callas
RE: secure sign & encrypt Terje Braaten
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt vedaal
Re: secure sign & encrypt Derek Atkins
RE: secure sign & encrypt Terje Braaten
RE: secure sign & encrypt Terje Braaten
RE: secure sign & encrypt Hal Finney
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt Jon Callas
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt Derek Atkins
Re: secure sign & encrypt Peter Gutmann
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt Matthew Byng-Maddick
RE: secure sign & encrypt Dominikus Scherkl
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt Derek Atkins
Re: secure sign & encrypt Derek Atkins
Re: secure sign & encrypt Derek Atkins
RE: secure sign & encrypt Terje Braaten
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt David P. Kemp
Re: secure sign & encrypt Derek Atkins
Re: secure sign & encrypt Matthew Byng-Maddick
RE: secure sign & encrypt Terje Braaten
RE: secure sign & encrypt Dominikus Scherkl
RE: secure sign & encrypt Dominikus Scherkl
Re: secure sign & encrypt disastry
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt disastry
Re: secure sign & encrypt Derek Atkins
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt Derek Atkins
RE: secure sign & encrypt Terje Braaten
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt Derek Atkins
Re: secure sign & encrypt Derek Atkins
RE: secure sign & encrypt Terje Braaten
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt Peter Gutmann
Re: secure sign & encrypt Michael Young
Re: secure sign & encrypt Paul Hoffman / IMC
RE: secure sign & encrypt Terje Braaten
Re: secure sign & encrypt Brian M. Carlson
Re: secure sign & encrypt Jon Callas
Re: secure sign & encrypt Adrian 'Dagurashibanipal' von Bidder
RE: secure sign & encrypt john.dlugosz
RE: secure sign & encrypt Terje Braaten