Format of signed-and-encrypted documents
Mon Jul 2 23:33:02 2001
This message is in MIME format
Content-Type: text/plain; charset=us-ascii
Not so complicated a question. :)
Messages are signed first, and then the signature and message both encrypted.
The reasoning is that if you are encrypting something, you may not want the
world to know who it's from.
Look at it this way, you are not going to encrypt something, publish it, and
then want people to be able to tell that this encrypted document came from
you. Who cares? It's encrypted, they can't read it anyway.
So, since it doesn't make sense that anyone would WANT to be able to have the
world verify that an encrypted document originated with themself, and people
MAY not want anyone (besides the intended receivers) to know who sent it, the
signature of encrypted documents was encapsulated inside the encryption.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
-----END PGP SIGNATURE-----
End of MIME message