David C. Partridge wrote:
The "one shot" symmetric key is purely random.
how?
No it's not a function of anyone's private or public key.
then it is open to man in the middle....
Once generated, it is encrypted using the public key of the recipient and
included with the message.
but then if i do something like DES(key=hispubkey(data=somerandom))
i can always decrypt if i know hispubkey.
there has to be something/key unique between sender and receiver...correct? else it is open to man in the middle.
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
