Re: DSA alternative to RSA

Enzo Michelangeli (em@who.net)
Wed, 29 Jul 1998 07:42:12 +0800

• Next message: Anonymous: "Schnorr patent and DSS"
• Previous message: Ben Laurie: "Re: Abstract Algorithms"
• In reply to: Johnny Eriksson: "Re: Abstract Algorithms"

-----Original Message-----
From: Perry E. Metzger <perry@piermont.com>
Date: Tuesday, July 28, 1998 11:29 PM
Subject: Re: DSA alternative to RSA

>
>Julian Assange writes:
>> It certianly isn't alone in this. Most public signature schemes, with the
>> exception of RSA have some form of subliminal channel. Further, recent
>> papers suggest that DSA was strengthened against subliminal channels -
>> they're still there, but they could have been worse.
>>
>> DSA authenticated DH is a good patent free substitute for RSA.
>
>I can't disagree with either statement.
>
>.pm

A.C. 2nd ed. contains two contrasting statements: at page 536, Bruce quotes
papers by Simmons and Seberry supporting the claim that any signature scheme
(therefore including RSA) can be converted into a subliminal channel; and at
page 80 he mentions two papers by Desmedt about subliminal-free signatures.
I have no access to those papers so I can't check by myself. Can anybody
enlighten me?

Enzo

• Next message: Anonymous: "Schnorr patent and DSS"
• Previous message: Ben Laurie: "Re: Abstract Algorithms"
• In reply to: Johnny Eriksson: "Re: Abstract Algorithms"