PGP 6 can't handle ElGamel-only keys
rabbi at quickie.net
Mon Jul 17 12:27:42 CEST 2000
-----BEGIN PGP SIGNED MESSAGE-----
PGP Has never, and never will, support ElGamal signing keys. There are too
many known attacks against them, and supporting them would weaken PGP.
Why would you not generate a DSA/ElGamal key instead, if you only intend
to use it for encryption?
On Fri, 14 Jul 2000, Dave Dykstra wrote:
> My corporate security organization generated a 1408 ElGamel-only key with
> gpg to be used only for encryption. We chose that size as a compromise
> between security and performance. Unfortunately, we just discovered that
> PGP 6.53 cannot import it. It can handle a 1408-bit key if it is a
> combined DSA/ElGamel key. I haven't tried other-sized ElGamel-only keys,
> but I suspect that PGP 6 just can't handle them at all; is that a known
> - Dave Dykstra
System Administrator | "Every window on Alcatraz has
Technology Consultant | a view of San Francisco."
icq.. 10735603 |
pgp.. finger://ns.quickie.net/rabbi | --Susanna Kaysen
-----BEGIN PGP SIGNATURE-----
Comment: OpenPGP Encrypted Email Preferred.
-----END PGP SIGNATURE-----
More information about the Gnupg-devel