[139604] in cryptography@c2.net mail archive
Re: Why the poor uptake of encrypted email? [Was: Re: Secrets and cell phones.]
daemon@ATHENA.MIT.EDU (Dirk-Willem van Gulik)
Tue Dec 9 11:03:35 2008
Cc: Cryptography List <cryptography@metzdowd.com>
From: Dirk-Willem van Gulik <dirkx@webweaving.org>
To: "David G. Koontz" <david_koontz@xtra.co.nz>
In-Reply-To: <493DA2FC.1030301@xtra.co.nz>
Date: Tue, 9 Dec 2008 07:18:59 +0000
On 8 Dec 2008, at 22:43, David G. Koontz wrote:
> JOHN GALT wrote:
>> StealthMonger wrote:
>>
>>> This may help to explain the poor uptake of encrypted email. It
>>> would
>>> be useful to know exactly what has been discovered. Can you provide
>>> references?
>>
>> The iconic Paper explaining this is "Why Johnny Can't Encrypt"
>> available
>> here: http://portal.acm.org/citation.cfm?id=1251435
>>
>
> Available from the Authors:
>
> http://gaudior.net/alma/johnny.pdf
A later follow up (s/mime; more focus on the KDC):
http://www.simson.net/clips/academic/2005.SOUPS.johnny2.pdf
is IMHO more interesting - as it explores a more realistic hostile
scenario, seems to pinpoint the core security issue better; and goes
to some length to evaluate remedial steps. And it does show that a
large swath of issues in PGP are indeed solvable/solved (now)
Thanks,
Dw
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
