On 16/12/13 23:41, Doug Barton wrote: > but one argument against what you're suggesting is that it's only as secure > as the encryption used in step 1 of the hybrid approach.
If only everything in cryptoland was "only as secure as 3DES"... > The ability to apply SSS to the entire secret would be quite valuable I don't see why. If this is because you avoid "insecurities in symmetric crypto", I just don't buy it. Otherwise, please explain. > although your concern about entropy use is something that should be addressed > explicitly. And how do you propose to do that? You can't conjure up good quality entropy. And if you don't trust symmetric crypto, you can't use that to create an almost-random stream either. Peter. -- I use the GNU Privacy Guard (GnuPG) in combination with Enigmail. You can send me encrypted mail if you want some privacy. My key is available at <http://digitalbrains.com/2012/openpgp-key-peter> _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users