-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thursday 06 February 2003 08:25, Jeffrey Clement wrote: > So assuming this is true, which I'm fairly sure it is, wouldn't > encrypting to multiple recipients just attach one copy of the symmetric > key encrypted for each recipient. The message data itself would still > only appear once in the GPG output and would be encrypted using the > symmetric cipher.
yes, you are right... the session key for a symmetric cipher is used and is encrypted uniquely for each recipient... those multiple copies of the key are attached to the encrypted message so the each intended recipient can access the key... http://www.gnupg.org/gph/en/manual.html#AEN210 - -- Aaron J. Seigo GPG Fingerprint: 8B8B 2209 0C6F 7C47 B1EA EE75 D6B7 2EB1 A7F1 DB43 "Everything should be made as simple as possible, but not simpler" - Albert Einstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE+QpQ+1rcusafx20MRArcwAJwJ7cHb4kOeB/3Df6m+d4cUARsqGACfQp0C tqxvfaUaSdw9Kc66hNjX8Vw= =sFSp -----END PGP SIGNATURE-----
