Menu

#26 mix pgp client does not encrypt w/AES

open
nobody
Client (9)
7
2003-04-02
2002-08-21
Len Sassaman
No

When using the mixmaster ncurses interface to encrypt
to a PGP key that lists AES-128 as its preferred cipher,
mix will instead encrypt using 3DES.

Output of an encrypted message decryption:

rabbi@thetis:/usr/home/rabbi$ gpg -vvv --list-packets
aestest.asc
gpg: armor: BEGIN PGP MESSAGE
gpg: armor header: Version: N/A
:pubkey enc packet: version 3, algo 1, keyid
26179EB7009BA71D
data: [4095 bits]
gpg: public key is 009BA71D
gpg: loaded digest 2
gpg: /usr/local/lib/gnupg/idea: IDEA ($Revision: 1.9 $)
gpg: /usr/local/lib/gnupg/idea: provides cipher algorithm 1
gpg: using secondary key 009BA71D instead of primary
key 5DE480FC

You need a passphrase to unlock the secret key for
user: "Len Sassaman <rabbi@abditum.com>"
[passphrase entered]
gpg: using secondary key 009BA71D instead of primary
key 5DE480FC
4096-bit RSA key, ID 009BA71D, created 2000-09-23
(main key ID 5DE480FC)

gpg: loaded digest 1
gpg: public key encrypted data: good DEK
:encrypted data packet:
length: 84
gpg: encrypted with 4096-bit RSA key, ID 009BA71D,
created 2000-09-23
"Len Sassaman <rabbi@abditum.com>"
gpg: 3DES encrypted data
:compressed packet: algo=1
:literal data packet:
mode t, created 0, name="stdin",
raw data: 65 bytes
gpg: decryption okay

--

Below are the flags set in that key. Note that, in
addition to specifying AES, the MDC packet is listed as
a feature but not used.

mix@thetis:/usr/home/mix/.pgp > gpg --list-packets
rabbi.asc
:public key packet:
version 4, algo 1, created 969746838, expires 0
pkey[0]: [4096 bits]
pkey[1]: [17 bits]
:user ID packet: "Len Sassaman
<rabbi@abditum.com>"
:signature packet: algo 1, keyid 4A0A81495DE480FC
version 4, created 1027536315, md5len 0,
sigclass 13
digest algo 2, begin of digest a2 67
hashed subpkt 2 len 5 (sig created 2002-07-24)
hashed subpkt 27 len 2 (key flags: 0F)
hashed subpkt 11 len 5 (pref-sym-algos: 7 3 2 1)
hashed subpkt 21 len 3 (pref-hash-algos: 2 3)
hashed subpkt 22 len 3 (pref-zip-algos: 2 1)
hashed subpkt 30 len 2 (features: 01)
hashed subpkt 23 len 2 (key server preferences:
80)
subpkt 16 len 9 (issuer key ID
4A0A81495DE480FC)
data: [4095 bits]
:public sub key packet:
version 4, algo 1, created 969746856, expires 0
pkey[0]: [4096 bits]
pkey[1]: [17 bits]
:signature packet: algo 1, keyid 4A0A81495DE480FC
version 4, created 969746856, md5len 0, sigclass
18
digest algo 2, begin of digest 31 96
hashed subpkt 2 len 5 (sig created 2000-09-23)
hashed subpkt 27 len 5 (key flags: 0C 00 00 00)
subpkt 16 len 9 (issuer key ID
4A0A81495DE480FC)
data: [4095 bits]

Discussion

  • Len Sassaman

    Len Sassaman - 2002-08-28
    • assigned_to: nobody --> disastry
     

  • Peter Palfrader

    Peter Palfrader - 2003-04-02
    • assigned_to: disastry --> nobody
     

Log in to post a comment.

MongoDB Logo MongoDB