Sub Keys versus Session Keys
Gerd Ewald
Gerd Ewald <gerd.ewald@pro-privacy.de>
Wed Mar 20 20:22:01 2002
Hello David,
On Wed, 20 Mar 2002 16:58:42 -0000 GMT your local time,
which was 20.03.2002, 17:58 (GMT+0100) where I live, you wrote:
[...]
> Is this a difference between PGP and GnuPG, or due to using ElGamal instead
> of RSA, or what ?
[...]
Not at all. The session key is needed for encrypting the message using
one of the symmetric algorithms (CAST, 3DES, Rijndael or whatever...).
This key should _not_ be used again (this is what good cryptographers
teach).
RSA or any other asymmetric algorithm is used to encrypt the session
key with the public key of the recipient.
--
Best regards,
Gerd
=======================================================
Tutorial for using PGP with TheBat! www.pro-privacy.de
-------------------------------------------------------
The day microsoft makes something that doesn't suck is the day they start
making vacuum cleaners.
-------------------------------------------------------
now playing: WDR2 :-)