[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Keystone

To: [email protected]
Subject: Keystone
From: Eric Hughes <[email protected]>
Date: Wed, 21 Oct 92 22:41:40 -0700
Cc: [email protected]
In-Reply-To: Loyd Blankenship's message of Wed, 21 Oct 92 21:33:05 CST <[email protected]>


Ah.  A small PGP subset.  You hadn't mentioned this.  When you said
you weren't requiring the user to run PGP, I assumed key generation
must occur on the board.

As for your fatal flaw I hadn't spotted, I had spotted it, and the
location of the private key was the critical point.  If the key is on
the BBS, the message goes out in the clear.

Look, it boils down to this.  If the message traffic to the BBS is to
be encrypted, then the user has to generate a key on his own machine
and decrypt it on his own machine.  There's no way around that.

But the user interface problem can be solved.  Just make a bunch of
.com files which do nothing but spawn pgp by invoking the correct
arguments.  Very simple; a few lines of C is all.  Even the PGPPATH
can be set before the spawn.  It's an easy encapsulation.  It will run
a bit slower for load time, but not appreciably.  And you won't have
to recompile PGP from the distributed executables.

Eric

Follow-Ups:
- Re: Keystone
  - From: [email protected]

Prev by Date: Put me on your mailing list!
Next by Date: Re: Keystone
Prev by thread: Keystone
Next by thread: Re: Keystone
Index(es):
- Date
- Thread