Elgamal signatures (was Re: splitting keys)

Brian M. Carlson sandals@crustytoothpaste.ath.cx
Wed Feb 26 02:22:02 2003


--kjpMrWxdCilgNbo1
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Feb 21, 2003 at 07:56:54AM -0500, David Shaw wrote:
> There are many reasons not to use Elgamal signatures.  Only GnuPG
> supports them, so you can't communicate with any other OpenPGP
> program.  They are also incredibly slow, which means people have to
> sit for 10-20 seconds every time they need to check one of your
> messages.  If they have their mail reader configured to automatically
> verify signatures, then they can be reading happily along, hit one of
> your messages, and they're locked up for a while.

They really aren't that slow. I have a Duron 900, and it's pretty fast,
actually. I haven't tried it on my PowerPC 750FX (G3) 700MHz, but I
suspect it can't be *that* slow. I happen to prefer Elgamal over DSA
because it is slightly more secure if implemented correctly. Because it
is entirely in the field of p, you have a signature of size 2p, instead
of 2q (q=3D=3D160). Therefore, it is theoretically harder to brute force an
Elgamal signature than a DSA signature. And because they are both based
on the Discrete Logarithm Problem, breaking either of them that way is
equally difficult. Therefore, I contend that Elgamal is more secure
than DSA.

This message is signed with my Elgamal key (0xdca1913a) instead of my
normal key (0x560553e7).

--=20
Brian M. Carlson <sandals@crustytoothpaste.ath.cx> 0x560553e7
"Let us think the unthinkable, let us do the undoable. Let us prepare
 to grapple with the ineffable itself, and see if we may not eff it
 after all." --Douglas Adams

--kjpMrWxdCilgNbo1
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Ubi libertas, ibi patria.
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=
=Knwc
-----END PGP SIGNATURE-----
Signature policy: http://decoy.wox.org/~bmc/openpgp/policy.tex

--kjpMrWxdCilgNbo1--