Smartcards and tokens

sivmu sivmu at
Sun Dec 18 02:53:58 CET 2016

Am 18.12.2016 um 01:30 schrieb Andrew Gallagher:
>> On 18 Dec 2016, at 00:17, sivmu <sivmu at> wrote:
>> ... that this means RSA encrzption is reproducable, meaning encrypted
>> files of the same plaintext result in the same ciphertext, as this woul
>> make the process reproduceable and any malfunction can be easily noticed.
> No, because the plaintext is symmetric-encrypted with a random session key on the host. The smartcard just asymmetric-encrypts the session key. This two step process is used mainly because asymmetric encryption is comparatively slow, but it also means that two identical plain texts won't get encrypted to the same ciphertext, due to the random session key. 
> A

You are right, I forgot that.

Having some kind of way to check if the card is operating normally would
be awesome though...

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20161218/4739eca3/attachment.sig>

More information about the Gnupg-users mailing list