a facie evidence of
cooperation to hinder prosecution.
Is it rebuttable? Sure. Is it a nightmare for both of them? Yes.
Does it make their communications plausibly deniable? Not even close.
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
On Sun, 25 Jul 2010 11:09:34 -0400 MFPA
wrote:
>Hi
>
>
>On Friday 23 July 2010 at 2:51:38 PM, in
>,
>ved...@nym.hush.com wrote:
>
>
>> [2] hiding the identity of the signer:
>
>> (a) generate a new keypair and give it to a person you
>> want to have 'plausible deniability' with
>
>> (b) a signed
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Ted Smith escribió:
> On Fri, 2010-07-23 at 02:07 -0400, Faramir wrote:
...
>> Well, I suppose in most countries nobody is going to torture you, but
>> there are other countries where you can't be so sure... Also, an
...
> Nobody in any country is
On 7/23/2010 6:08 PM, Ted Smith wrote:
> Nobody in any country is going to torture you for your key, because
> keyloggers are much less expensive than torturers + torturing equipment.
This is not true. There are documented instances where people have been
tortured to turn over crypto keys.
You a
On 23 July 2010 23:08, Ted Smith wrote:
> On Fri, 2010-07-23 at 02:07 -0400, Faramir wrote:
>> -BEGIN PGP SIGNED MESSAGE-
>> Hash: SHA256
>>
>> Ted Smith escribió:
>> ...
>> >> Deniable encryption is a useful tool, but it is not a universally good
>> >> idea.
>> >
>> > An interrogator as
On Fri, 2010-07-23 at 02:07 -0400, Faramir wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Ted Smith escribió:
> ...
> >> Deniable encryption is a useful tool, but it is not a universally good
> >> idea.
> >
> > An interrogator as described in this thread is a movie plot threat. I
On Fri, 23 Jul 2010, Faramir wrote:
Doug Barton escribió:
On Thu, 22 Jul 2010, Faramir wrote:
...
I don't see the signature, nor the claim about it being signed. I saw
an attachment, but Thunderbird didn't say it was a signature...
If you navigate to the message in Thunderbird and then typ
Daniel Kahn Gillmor dkg at fifthhorseman.net wrote on
Fri Jul 23 16:32:17 CEST 2010 :
> There is no way to "prove that you did not encrypt" a message.
Agreed.
But it is very simple to either give up a session key to an
encrypted message, or show that that the message was not encrypted
to any k
On 07/23/2010 09:51 AM, ved...@nym.hush.com wrote:
>> From: Andre Amorim
>> Do we have a "plausibly deniable" option ?
>
> [1] hiding the identity of the encryption:
>
> The 'throw-keyids' option hides which keys the message is encrypted to
[...]
vedaal at nym.hush.com wrote on Fri Jul 23 15:51:38 CEST 2010
>and since you really didn't
>encrypt the message, you can't give up the session key, and now
the
>government wants *all* your keys and passwords to prove you didn't
>encrypt the message.
Sorry :-)
meant to say:
and since you r
>Message: 4
>Date: Thu, 22 Jul 2010 21:19:50 +0100
>From: Andre Amorim
>To: GnuPG Users
>Do we have a "plausibly deniable" option ?
GnuPG can be used for plausible deniability both for encrypting and
for signing:
[1] hiding the identity of the encryption:
The &#
On Thu, Jul 22, 2010 at 08:03:25PM -0700, Doug Barton wrote:
> Can anyone else verify messages sent by Andre? His message claims to
> have a PGP signature, but what's in what should be the signature
> block isn't.
Mutt isn’t verifying these either. The message Content-Type appears to
be multipart/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Robert J. Hansen escribió:
...
>> An interrogator as described in this thread is a movie plot threat. In
>> reality, nobody is going to torture you for your key...
>
> The point is not about torture. The point is about interrogation.
>
> Imagine t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Doug Barton escribió:
> On Thu, 22 Jul 2010, Faramir wrote:
...
>> I don't see the signature, nor the claim about it being signed. I saw
>> an attachment, but Thunderbird didn't say it was a signature...
>
> If you navigate to the message in Thunde
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Ted Smith escribió:
...
>> Deniable encryption is a useful tool, but it is not a universally good idea.
>
> An interrogator as described in this thread is a movie plot threat. In
> reality, nobody is going to torture you for your key, because there
On 7/22/2010 10:43 PM, Ted Smith wrote:
>> Thanks to the deniable encryption features of TrueCrypt, there is no way
>> to account for all the data. Is that empty space in your container, or
>> is there a small hidden container that you're not confessing?
>> Ultimately, you can't make the interroga
On Thu, 2010-07-22 at 21:53 -0400, Robert J. Hansen wrote:
> On 7/22/2010 6:19 PM, Daniel Kahn Gillmor wrote:
> > This feature is also dubious, because there will be suspiciously
> > high-entropy on the disk, and you are known to be using tools with this
> > feature, you will simply be
On Thu, 22 Jul 2010, Faramir wrote:
Doug Barton escribió:
Can anyone else verify messages sent by Andre? His message claims to
have a PGP signature, but what's in what should be the signature block
isn't.
I don't see the signature, nor the claim about it being signed. I saw
an attachment, bu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Doug Barton escribió:
> Can anyone else verify messages sent by Andre? His message claims to
> have a PGP signature, but what's in what should be the signature block
> isn't.
I don't see the signature, nor the claim about it being signed. I saw
an
Can anyone else verify messages sent by Andre? His message claims to
have a PGP signature, but what's in what should be the signature block
isn't.
Doug
--
Improve the effectiveness of your Internet presence with
a domain name makeover!http://SupersetSolutions.com/
>>Please don't reply off-list
.
Daniel,
sure no problems;
--Andre
-- Forwarded message --
From: Daniel Kahn Gillmor
Date: 22 July 2010 22:48
Subject: Re: plausibly deniable
To: Andre Amorim
Hi Andre--
Please don't reply off-list. this discussion would be u
On 7/22/2010 6:19 PM, Daniel Kahn Gillmor wrote:
> This feature is also dubious, because there will be suspiciously
> high-entropy on the disk, and you are known to be using tools with this
> feature, you will simply be coerced until you've accounted for all
> the data.
It's consid
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Andre Amorim escribió:
...
> The closest idea to Plausible Deniability for encryption (not
> signatures) is something like hidden volumes within encrypted volumes,
> which truecrypt offers:
>
> http://www.truecrypt.org/
>
> This feature is also du
No worrys Daniel..
living and learning..
--Andre
-- Forwarded message --
From: Daniel Kahn Gillmor
Date: 22 July 2010 22:48
Subject: Re: plausibly deniable
To: Andre Amorim
Hi Andre--
Please don't reply off-list. this discussion would be useful for others
who follo
t;
>
> -- Forwarded message --
> From: Daniel Kahn Gillmor
> Date: 22 July 2010 22:48
> Subject: Re: plausibly deniable
> To: Andre Amorim
>
>
> Hi Andre--
>
> Please don't reply off-list. this discussion would be useful for others
> who f
On 7/22/2010 5:17 PM, David Shaw wrote:
> By that logic, no program can be said to provide plausible deniability ;)
And I think that's a true statement. :) Plausible deniability is so
context-sensitive that without a lot of context data, nothing can be
said to provide it.
smime.p7s
Descriptio
On Jul 22, 2010, at 4:26 PM, Robert J. Hansen wrote:
> On 7/22/2010 4:19 PM, Andre Amorim wrote:
>> Do we have a "plausibly deniable" option ?
>
> No. Plausible deniability depends entirely on what your adversary finds
> plausible. "I didn't sign that!
On 7/22/2010 4:19 PM, Andre Amorim wrote:
> Do we have a "plausibly deniable" option ?
No. Plausible deniability depends entirely on what your adversary finds
plausible. "I didn't sign that! Look -- I have Thunderbird configured
to automatically sign *everything*, and
On 07/22/2010 04:19 PM, Andre Amorim wrote:
> Do we have a "plausibly deniable" option ?
Yes: do not sign your messages.
OpenPGP signatures are inherently designed to be non-repudiable. This
is not what you want if you want deniability.
--dkg
signature.asc
Descrip
Hi folks,
Do we have a "plausibly deniable" option ?
Thanks
Andre Amorim.
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
30 matches
Mail list logo
