On Mon, Feb 10, 2003 at 02:25:31AM +0100, Dr. Stephen Henson wrote: > Well for S/MIME enveloped data you can add additional certificates whose owner > (i.e. the entity with access to the private key) can decrypt. Many S/MIME > clients automatically make the message readable by the recpient (its silly > otherwise) and the sender (so they can later read it in the "Sent" mailbox) > additional certificates could be added to any other entity that should be able > to decrypt the mail.
...so the PGP thing sounds like a kludge then? Sounds like the *interface* (instead of the technology) secretly "Cc's" the additional key to the message, so that either the true recipient or the additional key can decrypt it. Neat way of adding a "new feature" :-) -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]