[prev in list] [next in list] [prev in thread] [next in thread]
List: gnupg-users
Subject: Re: GPG and PGP
From: Ingo =?iso-8859-15?q?Kl=F6cker?= <kloecker () kde ! org>
Date: 2011-03-17 20:06:35
Message-ID: 201103172106.36104 () thufir ! ingo-kloecker ! de
[Download RAW message or body]
[Attachment #2 (multipart/signed)]
On Wednesday 16 March 2011, Mark H. Wood wrote:
> On Wed, Mar 16, 2011 at 09:15:45AM +0100, Johan Wevers wrote:
> > Op 15-3-2011 21:32, Ben McGinnes schreef:
> > > That's probably a worthwhile discussion to have. Even if RFC1991
> > > support is maintained, there's still value in migrating encrypted
> > > data to more robust algorithms.
> >
> > Only if IDEA gets broken (or the pgp 2.x implementation of it turns
> > out flawed) or, very unlikely, 128 bit can be brute-forced in the
> > future.
>
> On that day it would be well to already know what to do about it and
> already have the tools in hand.
Obviously.
> It would be best to have already done so.
I'm not so sure about this. Migration requires decryption of the
encrypted data. This introduces an attack vector that does not exist if
you keep the data encrypted with IDEA.
Regards,
Ingo
["signature.asc" (application/pgp-signature)]
_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic