1995-08-18 - Re: use PGP for http encryption instead!

Header Data

From: “Robert A. Hayden” <hayden@krypton.mankato.msus.edu>
To: “George P. Magiros” <libgpmx@gsusgi2.Gsu.EDU>
Message Hash: 73b8c27981f8c41374e92a40c560fc08192a3b0c2f372f718d5a83d72a5c078f
Message ID: <Pine.ULT.3.91.950817220822.26415C-100000@krypton.mankato.msus.edu>
Reply To: <199508180239.WAA27731@gsusgi2.Gsu.EDU>
UTC Datetime: 1995-08-18 03:11:35 UTC
Raw Date: Thu, 17 Aug 95 20:11:35 PDT

Raw message

From: "Robert A. Hayden" <hayden@krypton.mankato.msus.edu>
Date: Thu, 17 Aug 95 20:11:35 PDT
To: "George P. Magiros" <libgpmx@gsusgi2.Gsu.EDU>
Subject: Re: use PGP for http encryption instead!
In-Reply-To: <199508180239.WAA27731@gsusgi2.Gsu.EDU>
Message-ID: <Pine.ULT.3.91.950817220822.26415C-100000@krypton.mankato.msus.edu>
MIME-Version: 1.0
Content-Type: text/plain


-----BEGIN PGP SIGNED MESSAGE-----

On Thu, 17 Aug 1995, George P. Magiros wrote:

> i don't mean to be extremely brash, but couldn't one use PGP to provide
> encrypted communication with the web.
> granted initially everyone with a browser would need there own key to
> communicate in an encrypted way - at least until such keys could be
> generated on the fly.
> 
> since the http "client" format resembles rfc821 message headers and a body,
> one could easily use a "hal" remailer type "Encrypted: PGP" header line
> plus hash marks "::" to reassemble a compatible http client command.
> The same could be done on the server side.

As far as I understand, no.  

1)  you can't export PGP.
2)  even though it's out there, making software with hooks for PGP is 
    equally bad in the eyes of the NSA.  There wa some talk on 
    alt.internet.media-coverage (and the thread is being crossposted all 
    over the place) about mosaic having to remove PGP hooks before the 
    NSA would let them export.
3)  Frankly, I don't necessarily trust something that plays with my 
    personal stuff if I can't access the source code to make sure it's not 
    messin' with it :-)

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
Comment: PGP Signed with PineSign 2.2

iQCVAwUBMDPo2DokqlyVGmCFAQH9wAP9EB9rdvCAu32ULCUqO6YE4eKSpn4499n8
S/FFeSD7QqRKRzDFs/FsWPqVJfgeD05QJRysrCBRwZTh8//jXBaiLJ6IhqG18YsE
oQq7bFXTEk9BmFcjGljhaLYX548qSmkZCFyBa5LNG96f4Lpj3kOE02BmWNRcCT3Y
U7kCk1btxcY=
=RVSJ
-----END PGP SIGNATURE-----
 
____           Robert A. Hayden      <=> hayden@krypton.mankato.msus.edu
\  /__     Finger for Geek Code Info <=>    Finger for PGP Public Key
 \/  /           -=-=-=-=-=-                      -=-=-=-=-=-
   \/        http://krypton.mankato.msus.edu/~hayden/Welcome.html

-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GED/J d-- s:++>: a-- C++(++++) ULU++ P+ L++ E---- W+(-) N++++ o+ K+++ w---
O- M+ V-- PS++>$ PE++>$ Y++ PGP++ t- 5+++ X++ R+++>$ tv+ b+ DI+++ D+++
G+++++ e++ h r-- y++**
------END GEEK CODE BLOCK------






Thread