Popescu and keys

s7r s7r at sky-ip.org
Thu May 21 10:50:53 CEST 2015


I tried to read this guy's blog either but it seams like you have to pay
to read it (buy credits with bitcoin). I don't know who the hell this
guy thinks he is, not even Bruce Schneier asks to pay fees to read his
blog/research papers, but I am just going to keep calm.

So, since I wouldn't give anything more than the bandwidth I am already
consuming to read this guy's blog, I guess I will never read his
'academic research on PGP', but I am really looking forward to see if he
can sign the nonce you've provided with your so-called compromised key.

I doubt this will ever happen. Even he never cracked any PGP keys at
all, the FUD he spread around was a nice way to get some free
advertising. Look, people saying his name on gnupg and enigmail lists,
which are quite popular I believe.

If he can prove he has your key by signing the nonce you've provided, I
hereby confirm that I will subscribe to his 'academic research blog' and
pay for each and every article, regardless I won't read them or have
interest in them.


On 5/21/2015 3:13 AM, Robert J. Hansen wrote:
> In the last couple of days a few different people have pointed me to
> Mircea Popescu's blog, where he's claimed he's broken ~150 keys that are
> in common circulation among the keyservers.  Unfortunately, his blog
> post is rather difficult to read: it's full of rude political asides
> that have no bearing on anything cryptological.  I regret that, because
> it obscures what I think is a fascinating question: has he actually
> managed to recover private keys given just the public key?
> He claims to already have broken my key.  If so, proving it is
> straightforward: sign a 256-bit value with my private key and upload it
> somewhere the world can see it.
> I'm going to be fascinated by the results, one way or another.  If he
> can successfully do this it's going to lead to a lot of very interesting
> questions.
> For those people who are concerned about this, relax and remember to
> breathe.  :)
> The 256-bit value, in base64 encoding:
> 	* anr8HIZZ1hRjeaXDxJ71qBNpw5s9r+42CqF+Bpk9vU4=
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users

More information about the Gnupg-users mailing list