Discussion in 'privacy general' started by hugsy, Jan 5, 2012.
Well it's Black Hat's briefing on hacking PGP
Written in spring 2005! Nothing new.
For the most part these are side channel attacks and can be prevented. But the issues with RSA and Asymmetric cryptography are the exact reasons I don't trust it. I only use it to sign e-mails and with that I max out the key size and expire the keys every 6 months. I have never trust them as they are much weaker than symmetric cryptography. a 1024 bit RSA key is approximately the same as a 90-bit Symmetric key.
Good read though!
Same here. El Gamal for encryption. Advanced GnuPG Key Creation options.