Looking for Elgamal sign+encrypt key information

Len Sassaman rabbi at quickie.net
Mon Mar 22 04:29:17 CET 2004

On Sun, 21 Mar 2004, David Shaw wrote:

> OpenPGP has a RSA-based signature algorithm that supports >1024-bit
> keys.  It's, well, RSA ;)

Precisely. What is the problem with RSA?

> > Additionally, the new DSS now also supports eliptic curve keys as
> > specified in ANSI X9.62.[1]
> There is a reserved algorithm number in OpenPGP for ECDSA, but nobody
> has decided upon and written down the details of the packet formats
> and other details of how it would work in OpenPGP.

It was actually implemented in PGP 7.5, probably per the direction of the
marketing department, because "elliptic curve cryptography" sounds sexy.

> > My research hasn't uncovered whether or not this new DSS is a topic of
> > discussion for inclusion with the updated OpenPGP.  Does anyone here know?
> It hasn't been discussed.  What's to add?  OpenPGP has DSA already, it
> doesn't need rDSA, and has a reserved slot for ECDSA for whenever
> someone wants to add it.  The fact that nobody has done this leads me
> to believe there is not strong interest in it.

There are strong reasons *not* to add more algorithms to OpenPGP. OpenPGP
already suffers greatly by having so many possible algorithms on which
attacks against the system can be made.

More information about the Gnupg-users mailing list