How much information can be gleaned about a gpg key by possessing both plaintext and ciphertext?

vedaal at vedaal at
Fri Nov 21 19:20:04 CET 2014

On 11/21/2014 at 1:01 PM, "Christ Schlacta" <aarcane at> wrote:
>So to summarize, the best way to try this attack would be to 
>encrypt lots
>of small messages to a dummy key and a target key because the only 
>plaintext is the session key. However, there's no known or 
>suspected method of plaintext attack anyway, so all this data is 
>to be a waste. 



You could (more efficiently) isolate the Public GnuPG key as an RSA Public key,
and use an implementation of RSA that does not use padding,
and try all the plaintexts and known resulting ciphertexts, and still not construct the RSA Private key.


More information about the Gnupg-users mailing list