At 02:28 PM 5/14/01 -0700, Robin Lee Powell wrote:
>
>What the _hell_ is the point of a shared secret scheme where you can
>reconstruct the secret with only one key??
>
Interesting question. There have been times when I've sent
email and not encrypted it to myself, and later wanted to
read it, but not wanted to bother the recipient.
If such a beast were possible then it would be useful.
Its not clear to me that its impossible
Cipher=PK(pub,priv,Plaintext)
Plaintext=PK^{-1}(pub,priv,Cipher)
and
Plaintext=Foo(priv,Cipher)
but I don't see how it would work (which means nothing.)
Is there an obvious proof that it couldn't exist?
