[805] in cryptography@c2.net mail archive
Re: forward secrecy and email protocols
daemon@ATHENA.MIT.EDU (Mike)
Mon May 12 13:20:40 1997
Date: Mon, 12 May 1997 19:10:59 +0200
To: Adam Back <aba@dcs.ex.ac.uk>
From: Mike <Michael.Johnson@mejl.com>
Cc: cryptography@c2.net
In-Reply-To: <199705091315.OAA02228@server.test.net>
Adam Back wrote:
>No existing email communications systems I am aware of have forward
>secrecy, because to take PGP as an example: the eavesdropper has
>escrowed your ciphertext, and you still have the private key.
>Everything is still recoverable with your cooperation.
I do my mail (pop3/smtp) over SSH. Even if a message is not PGP encrypted,
the eavesdropper can not read the message after the SSH host key has been
changed (every 30 minutes), no matter how much rubber hose he applies to
the crypto analysis.
Of course, this only works for recipients using the same ISP as I do
(infonex).
Mike.
