[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Encrypted Web Pages?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Encrypted Web Pages?
From: "Vlad \"SATtva\" Miller" <sattva@xxxxxxxxx>
Date: Tue, 18 Dec 2007 00:09:09 +0600
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Mon, 17 Dec 2007 13:09:40 -0500
In-reply-to: <4766AB5E.5070201@xxxxxxxxxxx>
Openpgp: id=8443620A; url=http://www.vladmiller.info/contacts/keys.html
Organization: "openPGP in Russia", www.pgpru.com
References: <92429.57507.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <4766AB5E.5070201@xxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.9 (X11/20071119)

Michael Holstein wrote on 17.12.2007 23:01:
> I'm not a mathematician, but it can't be wise to store multiple copies
> of the same plaintext encrypted by the same cipher using different keys
> .. much crypto has historically been broken that way.

As a side note: In the context of OpenPGP you have to encrypt the same
message (plaintext) with more than 65536 public keys in order to make
things somewhat more appropriate for an attacker. And even that's won't
help him much because of the PKCS padding.

-- 
SATtva | security & privacy consulting
www.vladmiller.info | www.pgpru.com

References:
- Re: Encrypted Web Pages?
  - From: Martin Fick
- Re: Encrypted Web Pages?
  - From: Michael Holstein

Prev by Author: Re: Encrypted Web Pages?
Next by Author: Re: Encrypted Web Pages?
Previous by thread: Re: Encrypted Web Pages?
Next by thread: Re: Encrypted Web Pages?
Index(es):
- Author
- Thread