Hi
"Samuel W. Heywood" <[EMAIL PROTECTED]> wrote:
>> The messages aren't secret that's not the point. The point is to create
>> messages that let us know who we are talking to. (And with erspect to the
>> secure sites who we are ourselves).
SH> You mean to say that my internet shopping order for goods does not bear
SH> an
SH> encrypted credit card number? Anyone listening could find out my credit
SH> card number, but would experience great difficulty trying to falsely
SH> identify himself as me?
Nope ... Bernie was talking about signing in the part you quoted.
Read through his whole mail, and you understand.
Basically there are 2 possibilities:
* encryption (only the receiving party can read it)
* signing (everybody can read it, and there is a small part, which is a
encrypted 'checksum' of the message, which is encrypted with YOUR secret key.
So if the message is changed, the checksum doesn't match, and everybody knows
that the message is not authentic.) Sure it also shows that the message is
really from you!
SH> Sam Heywood
CU, Ricsi
--
Richard Menedetter <[EMAIL PROTECTED]> [ICQ: 7659421] {RSA-PGP Key avail.}
-=> You *must* be kidding! <=-
