17 Dec
2003
17 Dec
'03
11:17 p.m.
Bill Frantz writes:
Signed Diffie-Hellman key exchanges have the property known as "Perfect Forward Secrecy". Even if the opponent gets your public keys it still will not decrypt any traffic for him at all -- it just lets him pretend to be you. Thats one reason why protocols like Photuris and Oakley use the technique.
Unless I am badly mistaken, these exchanges need interaction, which makes them unsuitable for simple remailers.
Well, actually, you can play similar tricks with El Gamal... Perry