Re: PGP scripting...

From: Valdis.Kletnieksat_private
Date: Fri Jan 24 2003 - 15:45:38 PST

Next message: John Hanna: "Effective, Real and Group id switching for daemons"

Previous message: Dr. Ernst Molitor: "Re: protecting perl script source"
In reply to: Andre Mariën: "Re: PGP scripting..."
Next in thread: Michael McKay: "RE: PGP scripting..."
Next in thread: Beatie, Breck (ISSMountain View): "RE: PGP scripting..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 24 Jan 2003 08:04:41 +0100, =?ISO-8859-1?Q?Andre_Mari=EBn?= said:
> It may be just me, but I am getting confused.
> If we keep both private and public key secret,
> why not use plain old symmetric cryptography?

If the front-end box is compromised, the attacker holds all the keys that
are active on that box.  If you're using symmetric crypto, the attacker
can easily decrypt the data (for instance, if he finds it left lying around
on the disk, or taps the communication channel, etc).  if you use some
asymmetric scheme, they can't use the key they have gotten to decrypt.

application/pgp-signature attachment: stored

Next message: John Hanna: "Effective, Real and Group id switching for daemons"
Previous message: Dr. Ernst Molitor: "Re: protecting perl script source"
In reply to: Andre Mariën: "Re: PGP scripting..."
Next in thread: Michael McKay: "RE: PGP scripting..."
Next in thread: Beatie, Breck (ISSMountain View): "RE: PGP scripting..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sat Jan 25 2003 - 01:20:19 PST