Why trust gpg4win?
Jan
takethebus at gmx.de
Fri Sep 13 21:12:36 CEST 2013
In 09/13/2013 14:05, NdK wrote:
>> > Some other approach might be to compare the output of several
>> > versions of gnuPG, PGP etc.. This way you could check whether the
>> > information was secretly decrypted with a second "FBI key". This is
>> > even
>> > possible for someone how is no programer. Do you think checking the
>> > output in that way is useful?
> No. You can only check if the protocol is followed accurately.
> How can you check there isn't a weakness in RNG, for exampel [...]
There are statistical test with which you can test whether a random number
generator produces for instance uniformly distributed numbers. This in
connection with the above procedure might make a good output oriented check
of gnuPG.
Kind regards,
Jan
More information about the Gnupg-users
mailing list