Key with no signing possibilities
Tue Dec 10 21:02:01 2002
Janusz A. Urbanowiz wrote:
> This is why there's option to disclose a message's symmetric session key.
I know. I hope the governments in question (most notably the UK one) know
how to use the session key and still don't demend the secret encryption key.
But the same is true when you only give them the encryption key. I think in
practice they'll just confiscate the computer and demand all passphrases.
Being able to protect the signing key is then rather unimportant compared to
the rest of the damage.
ir. J.C.A. Wevers // Physics and science fiction site:
email@example.com // http://www.xs4all.nl/~johanw/index.html
PGP/GPG public keys at http://www.xs4all.nl/~johanw/pgpkeys.html