[Announce] GnuPG's ElGamal signing keys compromised

Noel D. Torres Taño ndtt at ll.iac.es
Fri Nov 28 00:07:33 CET 2003

> (selecting a smaller x secret exponent and using a smaller k for
> encryption).  While making this change the problem with signing keys
> was accidentally introduced: the same small k for encryption was also
> used for signing.  This can be used for a cryptographic attack to

Can't this be addressed changing the code to use a different small k for
signing, thus allowing to continue using (new) ElGamal sign+encrypt

Noel Torres (Envite)

More information about the Gnupg-devel mailing list