1996-03-03 - Re: Problems with certificates.

Header Data

From: Greg Rose <Greg_Rose@sydney.sterling.com>
To: PADGETT@hobbes.orl.mmc.com
Message Hash: abdc4b5648505f66421d3f65f55846a861eb9dd270d29224dc511b36f3876b14
Message ID: <pgpmoose.199603031715.53760@paganini.sydney.sterling.com>
Reply To: N/A
UTC Datetime: 1996-03-03 06:30:38 UTC
Raw Date: Sun, 3 Mar 1996 14:30:38 +0800

Raw message

From: Greg Rose <Greg_Rose@sydney.sterling.com>
Date: Sun, 3 Mar 1996 14:30:38 +0800
To: PADGETT@hobbes.orl.mmc.com
Subject: Re: Problems with certificates.
Message-ID: <pgpmoose.199603031715.53760@paganini.sydney.sterling.com>
MIME-Version: 1.0
Content-Type: text/plain


[Apologies if this appears twice -- I had a
posting problem.]

A. Padgett Peterson wrote:
  Next rage might well be "vanity" PGP keys. While at the moment it is not known
  how to create a specific match key to a sequence, if you generate enough
  keys, there will be some interesting sequences found. Possibly some PGP
  signatures will even be in violation of the CDA (now that should start a
  rush 8*).

That's not quite correct. The part about it not
being known, I mean. I created a key:

	Type bits/keyID    Date       User ID
	sec  1024/DEADBEEF 1995/09/28 Prime Rib Lovers
	sig       DEADBEEF             Prime Rib Lovers

(note: DEADBEEF seems about the most interesting
8-character hex word -- CAFE doesn't seem to go
with anything...)

And Christopher Drake (http://pobox.com/~netsafe)
has mailed out a key which has a company
advertisement in its ASCII armor. Hmmm. I thought
I kept it around, but I can't find it. Ahhh.
There it is.

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: 2.6.i

mQCNAjD/mQAAAAEEAP/////NetSafe+PGP+key////We+provide+inexpensive
AntiFraud/theft+etc+Security+Software5tGfKREuINIWsQqsLNS+uAneN9M
SuMu37f+NU/U2djtxE/b9h4bJ4wb8h3QkBiuTAS1QjpxpxryQzZ10zzGQe8VAAUR
tChDaHJpc3RvcGhlciBOLiBEcmFrZSA8TmV0U2FmZUBQb2JveC5jb20+
=SGC/
-----END PGP PUBLIC KEY BLOCK-----

Type bits/keyID    Date       User ID
pub  1024/C641EF15 1996/01/19 Christopher N.  Drake <NetSafe@Pobox.com>

I still assert there are a bunch of attacks
related to producing on-demand keyid's.

Greg.

Greg Rose               INTERNET: greg_rose@sydney.sterling.com  
Sterling Software       VOICE:  +61-2-9975 4777    FAX:  +61-2-9975 2921
28 Rodborough Rd.       http://www.sydney.sterling.com:8080/~ggr/
French's Forest         35 0A 79 7D 5E 21 8D 47  E3 53 75 66 AC FB D9 45
NSW 2086 Australia.     co-mod sci.crypt.research, USENIX Director.





Thread