[2972] in cryptography@c2.net mail archive
Re: IETF building GAK into the PKI
daemon@ATHENA.MIT.EDU (Steve Bellovin)
Wed Jul 15 16:10:16 1998
To: Marshall Clow <mclow@owl.csusm.edu>
cc: Carl Ellison <cme@acm.org>, cryptography@c2.net
Date: Wed, 15 Jul 1998 15:13:09 -0400
From: Steve Bellovin <smb@research.att.com>
In message <v04003a05b1d2a3ff9ab6@[130.248.15.46]>, Marshall Clow writes:
> At 2:16 PM -0700 7/14/98, Carl Ellison wrote:
> >I would love to see mailers (anyone from Qualcomm or Netscape listening?)
> >keep mail archives enciphered under one or more storage keys. Symmetric
> >crypto is fine for that. PGP mail can have the signature left attached to
> >the cleartext (all enciphered under the storage key).
> >
> Why should it be in the mail program?
> Why not use SFS (or PGPDisk, or ...) to create an encrypted disk
> to store mail on?
To some extent, that depends on the signature architecture. If
the ciphertext is signed, you have to store the original ciphertext
if preservation of the signature is important -- and it often is.
