[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Scientology tries to break PGP - and
-----BEGIN PGP SIGNED MESSAGE-----
re:
>[snip]
>> When the safety is finally removed from the gun at your head (sorry for
>> the drama) you hand over your alternate secret key. If decrypted with the
>> "alternate" or "fake" secret key, the encrypted file is wiped until it
>> reaches a marker; the remainder of the file is displayed. If you use your
>> "primary" or "real key", the extraneous text is simply stripped.
Instead of stripping, how about adding an offset to the start and end of
the ciphertext to each encoded idea key. This way, I can send text A to
key A, text B to key B, C to C and so on. As long as the recipient and
I have agreed in advance on which key to use to exchange the real message,
who can say otherwise? If code words are used in all the messages to
refer to any illegal acts, ("ship me 30 kilos of smack" might be a tad
incriminating) how can anything be proved even if the recipient is
compelled to divulge their key?
An added advantage to this scheme is that if properly used it should help
throw a monkey wrench into traffic analysis by the nosy. If I regularly
exchange encrypted messages with several different recipients, I can
enclose a seperate plaintext for each, make one massive combined
cyphertext and send it to all of them. The ones I have no instructions
or trade secrets for today will each receive "Ignore this message,"
followed by a randomly selected random number of fortunes or other random
data (so each message to be ignored will have different length different
plaintext to further thwart analysis).
This may be combined with stealth PGP headers to make it difficult for
LEAs to determine all recipients for the purpose of getting a subpeona
for their keys.
Joseph Block <[email protected]>
"We can't be so fixated on our desire
to preserve the rights of ordinary Americans ..."
-- Bill Clinton (USA TODAY, 11 March 1993, page 2A)
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQEVAwUBMFek8mGnwFiC3O2NAQGx0QgArERNVabtUY3MMDaDfjFn+Jg4ZGQcV4oD
47qJDFqW4riQ6LtQW3YiptkVl/jGJcwzEyRTAb4v6mYeIXwaQi4Or0C041ADLGMo
RzB/tIIQSsF+oQYEI/lHL1t8jYi4737oU2BJrUJvgahsNS0V7TBTEtGhdDWFDjk9
bd74f//lJCmnvq/gqV02KqB0zL1YGAXoXLzzhZEMk3T2cxm9n5oRZX82zT4tCV0Q
Cw1jW7ZT+Bsaa099RJ7HvLQI4fqMeI7+NoBwhhtpZ/Iy8OWmEhaOz4Z50cZcbxf1
Ol6xMKXdHBVqK41cm7lyoH7Tpt7Zw1bSq4svONm6v2urwn9R9JHn+Q==
=8BlI
-----END PGP SIGNATURE-----