[16228] in cryptography@c2.net mail archive
Re: public-key: the wrong model for email?
daemon@ATHENA.MIT.EDU (Ed Gerck)
Wed Sep 22 13:32:46 2004
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 22 Sep 2004 07:55:08 -0700
From: Ed Gerck <egerck@nma.com>
To: "cryptography@metzdowd.com" <cryptography@metzdowd.com>
In-Reply-To: <415180B8.3070308@algroup.co.uk>
X-Rcpt-To: <cryptography@metzdowd.com>
Ben Laurie wrote:
> <snip> I am suggesting that if
> you cannot rely on the recipient (or their machine) to manage keys
> properly, then you also cannot rely on them to manage decrypted emails
> properly.
Yes. This thread is about the observation that, even if the recipient
manages keys perfectly well, the recipient may not know he is
compromising the sender's security. The sender is in the recipient's
hands with PKC, whereas the sender usually has most (if not all) the
risk.
Cheers,
Ed Gerck
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
