[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Encrypted Web Pages?
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Encrypted Web Pages?
- From: "F. Fox" <kitsune.or@xxxxxxxxx>
- Date: Mon, 17 Dec 2007 17:17:45 -0800
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Mon, 17 Dec 2007 20:17:58 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; bh=lnx2Fxwn3wPLPH8+S2qu8FMuq8fixVzmT0IhbzL2Ay4=; b=VHrQ6qPQaJFlSDjWMa3GYtIcxV+nfZe4k6eKEChqRipI0Qu06OlUrbuvfi92m90V5/t7mH5qBrquvx9mPDk1fwK2er40pZDdizeLwXePPMqO/xXaC7bAuLxRtFoVVSR2LowjdjFTGmnJ4dRcJuW6t35/yQvmH1Hy86NrDbIwTyA=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; b=eLZH8jNAFWPs2xNV8wrb7RBOcngm//MrVsWGZ2iWlIYjHygGqxLoQLNxL6jqkBuioL+PpYKC02NcFMqAGo8Sv0Ps2XyjwwettCK+bcUqOvGtpeiUQfgWQk4aelQ1kvr5E0OUfXgo0Gwe9o7hIHM81bDg6o3upnvC7SZBmZFTvF0=
- In-reply-to: <509745.96758.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
- References: <509745.96758.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
- User-agent: Thunderbird 2.0.0.9 (Windows/20071031)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Martin Fick wrote:
(snip)
>
> Well, I think that is exactly what you will get
> if you use pgp or gpg to send an encrypted email
> to multiple recipients.
>
(snip)
IIRC, a GPG message in encrypted only once - even if there's multiple
recipients. It goes like this:
1.) A random key is generated.
2.) The message is encrypted with that random key, plugged into a
symmetric cipher.
3.) That random key is encrypted with the public key of each recipient,
and appended to the message itself.
So, the recipient would reverse that process: Use their private key to
decrypt the random key, and use that in the appropriate symmetric cipher
to decrypt the message.
- --
F. Fox: A+, Network+, Security+
Owner of Tor node "kitsune"
http://fenrisfox.livejournal.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org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=0M1T
-----END PGP SIGNATURE-----