Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. GnuPG>
  3. devel
Re: patents
jeremey at bluemoney
Dec 7, 1997, 3:49 PM
Post #1 of 2 (1244 views)
Permalink
-----BEGIN PGP SIGNED MESSAGE-----

I just joined the list, and I have some comments re: patents...

I would vote for DSA, since it is currently in PGP 5.x. Introducing
another layer of incompatibility is not good for anyone, especially
given that DSA is free worldwide.

Also, generating keys which are secure for ElGamal _signatures_ (not
encryption) is considerably harder than for DSA. I believe this was
the reason PGP, Inc chose DSA over ElGamal for signatures.

Regards,
Jeremey.
- --
Jeremey Barrett BlueMoney Software Corp.
Crypto, Ecash, Commerce Systems http://www.bluemoney.com/
PGP key fingerprint = 3B 42 1E D4 4B 17 0D 80 DC 59 6F 59 04 C3 83 64

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface

iQCVAwUBNIsn+S/fy+vkqMxNAQHZlAQAyjryF1fUjOvtdRyFmQz1mu5HGvawOfD1
VPrvRS62qGLonVaW1REJs6Fq+P6gQm6rVKt9zrhHLEitp/3FIlbk+jWeU4dGyz9k
e26PARuHl2lG6Vp7u9xJ51o+65RATtGqquYpMBRRstavP74YlDu1NRd/libN9fJL
k9+Z2uPODlo=
=PyJs
-----END PGP SIGNATURE-----
Re: patents [ In reply to ]
wk at isil
Dec 8, 1997, 2:05 AM
Post #2 of 2 (1206 views)
Permalink
Jeremey Barrett <jeremey@bluemoney.com> writes:

> I would vote for DSA, since it is currently in PGP 5.x. Introducing
> another layer of incompatibility is not good for anyone, especially
> given that DSA is free worldwide.

If this is really true (and I don´t believe it especially because of the
Schnorr patent) we should do it. Let´s see what the FSF says.

> Also, generating keys which are secure for ElGamal _signatures_ (not
> encryption) is considerably harder than for DSA. I believe this was
> the reason PGP, Inc chose DSA over ElGamal for signatures.

No that´s not true. I saw a message from Hal Finney (PGP Inc), which
said, that the key generation code for ElGamal is not good for signatures
and it is uncommented because of this - Implementing all requirements isn't
too much difficult (I have not yet done this - the current code generates
ElGamal keys just for the test the entire program). Because DSA is build
upon ElGamal, all security issues of ElGamal are also valid for DSA.

By the Way: DSA allows only keys up to 1024 bits; today this is enough, but
what's going on tomorrow - many folks are already using 2048 bits keys
(I don´t think that there is any need for them - but they are used).


Werner


--
Werner Koch, Duesseldorf - werner.koch@guug.de - PGP keyID: 0C9857A5

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal