Re: Death of PGP Key 0xFBAF5E44 at 19:03 02 Jan 1999 UTC

New Message Reply About this list Date view Thread view Subject view Author view

Anonymous (nobody@replay.com)
Sun, 3 Jan 1999 18:20:22 +0100


>>This is a plug, but it's taken at the most opportune time I can imagine. If
>>PGP used elliptic curve PK you wouldn't have this problem. Your verification
>>can be regened by hashing your pass phrase.
>
>You can also do this with many DLP-based PKC's where x can be a hash of a
>passphrase.

Or even in RSA for that matter, seeding a deterministic prime-search
algorithm with the hash of the passphrase.

Or, in any system, simply publish your private key, encrypted with your
passphrase.

We went over all this already on one of the crypto lists. Elliptic curve
has no advantage in this regard. Using any of these methods will probably
significantly weaken your key, unless you have a much stronger passphrase
than most people use.


New Message Reply About this list Date view Thread view Subject view Author view

 
All trademarks and copyrights are the property of their respective owners.

Other Directory Sites: SeekWonder | Directory Owners Forum

The following archive was created by hippie-mail 7.98617-22 on Sat Apr 10 1999 - 01:18:01