secure sign & encrypt
Adrian 'Dagurashibanipal' von Bidder
avbidder@fortytwo.ch
Fri May 17 17:16:01 2002
--=-ivbC0F0YEu2PvLP9b4+Z
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
Yo!
After having read the paper refernced in the ongoing 'signing &
encrypting' thread on gpg-users
http://world.std.com/~dtd/sign_encrypt/sign_encrypt7.html
I feel that these flaws are quite serious, as non-experts (like me)
almost automatically assume end-to-end security if they receive
encrypted mail. I'm not on this list very long, so I didn't get previous
discussions of this (are theare *searchable* archives?)
How about this extension of the openPGP standard:
the signature (openpgp-)packet of a signed & encrypted msg includes an
additional (signed!!!) subpacket of the new type 'intended encryption
key'. when gpg is told to verify a message and finds such a subpacket,
it prints an error message if=20
- the message is not encrypted
- the message is encrypted, but not with the intended key.
conventional signed & encrypted msgs produce a warning along the lines
of 'it can not be asserted that this message was encrypted by the
original sender. See <URL> for more information'.
(Of course, more than one 'intended encryption key' subpackets must be
allowed)
Yes, this is not rfc - but I got the impression that the gpg people are
not against extending the standard if there are valid reasons (cf.
picture id)
And while I'm at it (though this is tangential here, I know):
extension to the OpenPGP-MIME RFC 3156: Add the To:, From: and Subject:
headers of the mail to the (signed) MIME headers of multipart/signed
msgs and bug the mailreader people to verify the mail headers with
these.
comments?
-- vbi
--=20
secure email with gpg avbidder@fortytwo.ch: key id
0x92082481
avbidder@acter.ch: key id
0x5E4B731F
--=-ivbC0F0YEu2PvLP9b4+Z
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQA85R8Awj49sl5Lcx8RAoCrAJ4gCplIzL9U8Y4AAaQ7frEEQ2jCDwCeIwRY
W/I1c7oXs6zxmSt0mlGzGJw=
=TqKC
-----END PGP SIGNATURE-----
--=-ivbC0F0YEu2PvLP9b4+Z--