[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

AW: (Fwd) Binding cryptography - much work, little point ?



>[email protected] (Peter M Allan) wrote:
>[skip]
>I suspect the scheme is incomplete anyway.  After skimming the web page I
>see that the aim is to show the same session key has been encrypted under
>different ElGamal pubkeys.  Now who's to say those pubkeys belong to anyone ?
>Or is this what is meant by "such as Margaret's identity" ?  You'd list the
>ids of the TRPs and also prove that the pubkeys used were theirs ....  ?
>
One can imagine that included in the certified key of a TRP is a statement
like "PKI-ROLE = Trusted Retrieval Party". As it is certified by a higher order (e.g. a root of the PKI) it can be verified. 

Eric