stason.org logo Articles / TULARC / Security / PGP / lotus


previous page: 5.2. How do I sign a message while still leaving it readable? (PGP)page up: PGP FAQnext page: 5.4. Are PGP signatures legally binding?

5.3. Can't you just forge a signature by copying the signature block to another message? (PGP)

stason.org

 Articles


 Development


 Books


 Teaching


 Photography


 Bits and Pieces


 TULARC


 Contact Us


 Site Map



Search






Favorites

  Free Online Books


  Meta Religion


  Travel Blogs


  StasoSphere


  Healing Info


  Article Collection


  Practical mod_perl


  mod_perl2 Book


  MailChannels













Description

This article is from the PGP FAQ, by Jeff Licquia jalicqui@prairienet.org with numerous contributions by others.

5.3. Can't you just forge a signature by copying the signature block to another message? (PGP)

No. The reason for this is that the signature contains information
(called a "message digest" or a "one-way hash") about the message it's
signing. When the signature check is made, the message digest from
the message is calculated and compared with the one stored in the
encrypted signature block. If they don't match, PGP reports that the
signature is bad.

 

Continue to:


Share and Enjoy

Bookmark this story so others can enjoy it:
  • digg
  • Reddit
  • del.icio.us
  • Furl
  • Wists

Tags

security, PGP, Pretty Good Privacy, encryption, NSA, RSA, crack, glossary, signature, signing, verifying, keys, passphrase, hash, cryptography



TOP
previous page: 5.2. How do I sign a message while still leaving it readable? (PGP)page up: PGP FAQnext page: 5.4. Are PGP signatures legally binding?

Last modified Thu May 8 22:39:19 2008

Created by Stas Bekman and his DocSet.

[ Privacy Policy ] [ Copyright ] [ About Us ] [ Advertise on This Site ] [ Search ]