Why trust gpg4win?

Jan takethebus at gmx.de
Fri Sep 13 21:12:36 CEST 2013

In 09/13/2013 14:05, NdK wrote:
>> > Some other approach might be to compare the output of several
>> > versions of gnuPG, PGP etc.. This way you could check whether the
>> > information was secretly decrypted with a second "FBI key". This is 
>> > even
>> > possible for someone how is no programer. Do you think checking the
>> > output in that way is useful?
> No. You can only check if the protocol is followed accurately.
> How can you check there isn't a weakness in RNG, for exampel [...]

There are statistical test with which you can test whether a random number 
generator produces for instance uniformly distributed numbers. This in 
connection with the above procedure might make a good output oriented check 
of gnuPG.

Kind regards,

More information about the Gnupg-users mailing list