[8185] in cryptography@c2.net mail archive
RE: Is PGP broken?
daemon@ATHENA.MIT.EDU (Ian Brown)
Mon Dec 4 08:14:20 2000
From: Ian Brown <I.Brown@cs.ucl.ac.uk>
To: Bram Cohen <bram@gawth.com>
Cc: cryptography <cryptography@c2.net>
Date: Mon, 4 Dec 2000 11:14:33 -0000
Message-ID: <CKEJIHDOBFKPAALJLELDEEEICCAA.I.Brown@cs.ucl.ac.uk>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
In-Reply-To: <Pine.LNX.4.21.0012031154440.7203-100000@ultra.gawth.com>
> A problem with including a public key with every plaintext message is that
> it isn't very discreet - actually looks kind of ugly in some peoples's
> email clients.
You could use a separate PGP/MIME bodypart...
> Come to think of it, there are some tricky issues with regards to crypto
> on mailing lists, it might make sense to have a
> X-crypto-originator foo@bar.com line in the headers to specify that the
> crypto information contained in that piece of mail applies to the address
> foo@bar.com - otherwise there's no clear way of unraveling all the
> possible mixes of from, to, and reply-to headers which could possibly be
> sent to a mailing list.
The recipient would probably ignore the mail headers and use the userID(s)
in the public key certificate included in the message.
Ian :0)
