-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi all,
Michael Robinson wrote: [snip] | Finding the "unencrypted data" in this case is equivalent to either | cracking the session key RNG, or cracking the symmetric cipher, the | ability to do either of which obviates the need to deduce the RSA | private key in the first place. No it is not equivalent, as finding the private key would also enable you to digitally identify yourself as the key's owner, which is of at least the same importance when we look at how many people use PGP/GPG for digitally signing documents and mails. Ralf - -- Ralf Gerlich [EMAIL PROTECTED] Passionate programmer http://home.easylink.de/rgerlich/ ~ (my GPG signature is here^^^^^^) - -----BEGIN GEEK CODE BLOCK----- Version: 3.12 GCS d- s: a-- C++ UL++ P+++ L++ E W++ N+ o-- K- w O-- M V-- PS PE Y+ PGP+ t+ 5 X+ R- tv++ b+ DI D+ G e h-- r y+ - ------END GEEK CODE BLOCK------ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAjzJQ80ACgkQS7bkJa+XO88PywCfdV33Ua6RqWFaNdj++1FEuN13 RKkAnigx96Tems1sxSK9SPeAPhkCxWEm =9Z8H -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]