At 05:01 PM 8/14/97 -0400, nospam-seesignature@ceddec.com wrote:
On Wed, 13 Aug 1997, Ray Arachelian wrote:
Would it not be more secure if it picked a different IDEA session key for each recipient? Would be slower, but...
If there were random padding, I don't think it would increase the security. PGP uses one conventional key and multiple PK encryptions of it, with different padding (I think). Then you only have one message to send out, i.e. pk1,pk2...pkn,convenc instead of pk1,cenc1 pk2,cenc2...
There's really no need - the threat is in the RSA part, which is that you can solve for the secret message if you've got one secret message encrypted with a bunch of known public keys. By using different random padding on the IDEA session key for each public-key used, you avoid that problem. # Thanks; Bill # Bill Stewart, +1-415-442-2215 stewarts@ix.netcom.com # You can get PGP outside the US at ftp.ox.ac.uk/pub/crypto/pgp # (If this is a mailing list or news, please Cc: me on replies. Thanks.)