How are spoof decryptions prevented?
Ben Laurie
ben at algroup.co.uk
Tue, 03 Aug 1999 17:08:25 +0100
Denis.Russell@ncl.ac.uk wrote:
>
> At 12:42 pm +0100 3/8/99, Ben Laurie wrote:
> >Denis.Russell@ncl.ac.uk wrote:
> >...
> >> I suspect this may not suffice. :-)
> >
> >Particularly not if the ciphertext in question is clearly generated by
> >PGP or the like.
> ...
>
> Were I sending messages about which I was really worried about being
> ordered to decrypt at some time in the future on pain of jail or mutilation
> of sensitive extremities, I would probably strip headers from PGP, xor them
> with some pirate software, hide the result on the noise of softish porno
> gifs, and send them in turn by some other fairly secure method. Belt and
> braces man, me. :-)
The problem is, of course, that you, the sender, will not be ordered to
decrypt them. The recipient will.
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
"My grandfather once told me that there are two kinds of people: those
who work and those who take the credit. He told me to try to be in the
first group; there was less competition there."
- Indira Gandhi