Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: GnuPG: users

PGP interoperability

  

 
GnuPG users RSS feed   Index | Next | Previous | View Threaded


rjh at sixdemonbag

May 24, 2012, 7:20 PM

Post #1 of 9 (216 views)
Permalink
PGP interoperability
Looking over the PGP product offerings after their acquisition by
Symantec, it seems they have dropped support for 2048- and 3072-bit DSA.
This decision makes no sense to me, and is sufficiently weird that I
wonder if the marketing copy is horribly in error. However, the
marketing copy is clear -- across the whole of the PGP product line,
DSA2 is no longer supported. Check the following URLs, click on "System
Requirements," and take a look at the "Public Key Algorithms." For each
product they offer:

* Diffie-Hellman
* DSA (1024-bit keys only)
* RSA (up to 4096-bit keys)

http://www.symantec.com/products/sysreq.jsp?pcid=pcat_business_cont&pvid=desktop_email_1

http://www.symantec.com/products/sysreq.jsp?pcid=pcat_info_risk_comp&pvid=desktop_corporate_1

http://www.symantec.com/products/sysreq.jsp?pcid=pcat_info_risk_comp&pvid=desktop_pro_1


_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users


johanw at vulcan

May 25, 2012, 2:22 AM

Post #2 of 9 (210 views)
Permalink
Re: PGP interoperability [In reply to]
On 25-05-2012 4:20, Robert J. Hansen wrote:

> Looking over the PGP product offerings after their acquisition by
> Symantec, it seems they have dropped support for 2048- and 3072-bit DSA.
> This decision makes no sense to me, and is sufficiently weird that I
> wonder if the marketing copy is horribly in error.

Or something else is wrong:

> product they offer:
>
> * Diffie-Hellman
> * DSA (1024-bit keys only)
> * RSA (up to 4096-bit keys)

Seems they want to push everyone to RSA. I wonder why? The patent issue
is over so that can't be it.

I understood that it is believed that the discrete log problem is
possibly harder than factoring, since solving DL solves factoring but
not the other way around. Maybe the NSA has found a workable solution
for factoring but not for DL?

--
ir. J.C.A. Wevers
PGP/GPG public keys at http://www.xs4all.nl/~johanw/pgpkeys.html


_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users


hka at qbs

May 25, 2012, 6:10 AM

Post #3 of 9 (208 views)
Permalink
Re: PGP interoperability [In reply to]
On Friday 25 of May 2012 11:22:45 Johan Wevers wrote:
> On 25-05-2012 4:20, Robert J. Hansen wrote:
> > product they offer:
> > * Diffie-Hellman
> > * DSA (1024-bit keys only)
> > * RSA (up to 4096-bit keys)
>
> Seems they want to push everyone to RSA. I wonder why? The patent issue
> is over so that can't be it.
>
> I understood that it is believed that the discrete log problem is
> possibly harder than factoring, since solving DL solves factoring but
> not the other way around. Maybe the NSA has found a workable solution
> for factoring but not for DL?

Considering that Suite B uses ECC only for asymetric crypto, I'd say you're
probably right.

But that's just speculation, we will know in 30 - 40 years... :)

Regards.
--
Hubert Kario
QBS - Quality Business Software
02-656 Warszawa, ul. Ksawerów 30/85
tel. +48 (22) 646-61-51, 646-74-24
www.qbs.com.pl

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users


expires2012 at rocketmail

May 30, 2012, 12:42 PM

Post #4 of 9 (203 views)
Permalink
Re: PGP interoperability [In reply to]
Hi


On Friday 25 May 2012 at 10:22:45 AM, in
<mid:4FBF4F65.3000809 [at] vulcan>, Johan Wevers wrote:


> Maybe the NSA has found a workable solution for
> factoring but not for DL?

And shared the fact privately with Symantec?




--
Best regards

MFPA mailto:expires2012 [at] rocketmail

Wisdom is a companion to age; yet age may travel alone.


_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users


wk at gnupg

May 31, 2012, 12:32 AM

Post #5 of 9 (202 views)
Permalink
Re: PGP interoperability [In reply to]
On Wed, 30 May 2012 21:42, expires2012 [at] rocketmail said:

> And shared the fact privately with Symantec?

I heard that it is just a bug introduced by the marketing suits. The
PGP library never dropped support for DSA2.


Salam-Shalom,

Werner

--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.


_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users


ben at adversary

Jun 4, 2012, 1:49 AM

Post #6 of 9 (193 views)
Permalink
Re: PGP interoperability [In reply to]
On 31/05/12 5:32 PM, Werner Koch wrote:
> On Wed, 30 May 2012 21:42, expires2012 [at] rocketmail said:
>
>> And shared the fact privately with Symantec?
>
> I heard that it is just a bug introduced by the marketing suits.
> The PGP library never dropped support for DSA2.

Was there any explanation of why the marketing people dropped or
wanted to drop the functionality?


Regards,
Ben
Attachments: signature.asc (0.16 KB)


wk at gnupg

Jun 4, 2012, 9:47 AM

Post #7 of 9 (194 views)
Permalink
Re: PGP interoperability [In reply to]
On Mon, 4 Jun 2012 10:49, ben [at] adversary said:

> Was there any explanation of why the marketing people dropped or
> wanted to drop the functionality?

Maybe outdated technical specs which made it to the marketing dept. I
don't know - you need to ask Symantec.


Shalom-Salam,

Werner

--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.


_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users


ben at adversary

Jun 4, 2012, 10:11 AM

Post #8 of 9 (197 views)
Permalink
Re: PGP interoperability [In reply to]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On 5/06/12 2:47 AM, Werner Koch wrote:
> On Mon, 4 Jun 2012 10:49, ben [at] adversary said:
>
>> Was there any explanation of why the marketing people dropped or
>> wanted to drop the functionality?
>
> Maybe outdated technical specs which made it to the marketing
> dept. I don't know - you need to ask Symantec.

Fair enough. Most people I correspond with use GPG, I'll worry about
it if I ever have trouble with someone encrypting to my El-Gamal key.


Regards,
Ben

-----BEGIN PGP SIGNATURE-----

iEYEAREKAAYFAk/M7DgACgkQNxrFv6BK4xMSzQCfU/9j5BT30vntyY+gu4MTnT6a
P7AAn1C26VYQVxeeYnDrKLVYNF4N2Kxg
=ZucR
-----END PGP SIGNATURE-----

_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users


wk at gnupg

Jun 4, 2012, 12:01 PM

Post #9 of 9 (192 views)
Permalink
Re: PGP interoperability [In reply to]
On Mon, 4 Jun 2012 19:11, ben [at] adversary said:

> Fair enough. Most people I correspond with use GPG, I'll worry about
> it if I ever have trouble with someone encrypting to my El-Gamal key.

Not for a compliant OpenPGP implemenations. From RFC-4880:

Implementations MUST implement DSA for signatures, and Elgamal for
encryption. Implementations SHOULD implement RSA keys (1). RSA


Salam-Shalom,

Werner

--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.


_______________________________________________
Gnupg-users mailing list
Gnupg-users [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gnupg-users

GnuPG users RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.