undefined | Better HN

0 pointse12e9y ago0 comments

You're aware of an attack on RSA that weakens it when a short random string is encrypted with a handful of RSA keys as opposed to a single key?

Afaik supplying multiple ids to gpg simply re-encryps the same symmetric key for multiple recipients - the plaintext is turned into a single cipher text.

0 comments

1 comments · 1 top-level

hackcasual9y ago

There is an attack against RSA if you encrypt very small values with a small exponent and insecure padding. GPG generates a large symmetric encryption key, and uses that to encrypt the message, uses 65537 (as is considered good practice) as its exponent, and uses a cryptographically appropriate PKCS#1v1.5 padding scheme

As far as I'm aware, there's no reduction in security by encrypting to multiple public keys (other than increased risk of compromising one of the keys).

j / k navigate · click thread line to collapse