[7571] in cryptography@c2.net mail archive
Re: Elgamal
daemon@ATHENA.MIT.EDU (John Kelsey)
Thu Jul 27 01:23:49 2000
Message-Id: <4.1.20000726230343.009cd920@email.plnet.net>
Message-Id: <4.1.20000726230343.009cd920@email.plnet.net>
Date: Wed, 26 Jul 2000 23:09:03 -0500
To: "Steven M. Bellovin" <smb@research.att.com>
From: John Kelsey <kelsey.j@ix.netcom.com>
Cc: "Simon Aronson" <sip99sma@rdg.ac.uk>, cryptography@c2.net
In-Reply-To: <20000727014938.4A3AC35DCB@smb.research.att.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
-----BEGIN PGP SIGNED MESSAGE-----
At 09:49 PM 7/26/00 -0400, Steven M. Bellovin wrote:
...
>That works, though I think I'd include a counter or some such in the
> hash, so that the same r was not used for two identical messages.
Actually, for signatures, this is just fine. It just means that the
same message always gives the same signature. I guess it also
kind-of ruins the subliminal channel in DSA. For encryption, though,
you'd probably like to include a timestamp or counter.
> --Steve Bellovin
- --John Kelsey, kelsey@counterpane.com
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.1 Int. for non-commercial use
<http://www.pgpinternational.com>
Comment: foo
iQCVAwUBOX+12CZv+/Ry/LrBAQE4JAP/fmgX9eEqr6WzfhF3RYW8mune+aSePUqJ
xlVIo2UZM7MdqFoQp0o4Ns0P3C8cAhPHojnZnJK3STBAoP9ccKB74ru9DXDebq8r
D8hWLJQ8fYVbomKInmHFv1cTfZofhhze5sxEiHQW+XGyDdilydriCIgL8N7QK4k3
JERXGDYfck8=
=1bmB
-----END PGP SIGNATURE-----
