> -----Original Message-----
> From: Alexander Fedotov
> Sent: Tuesday, March 12, 2002 7:07 PM
> Subject: [e-gold-list] Re: emergency ! cannot login to e-gold
> account ?
> how ?
> Hello,
> > >In the meantime any chance of 1mdc or similar offering an account
> based
> > >solely on PGP keys where account# = keyid ?
> > >
> > > cya, Andrew...
> >
> > Sure, we'll add it to the 1mdc list, Andrew!
> Do you think PGP key ID is ABSOLUTELY unique?
>
> Regards. Alexander Fedotov
I have yet to see a documented case of collision, but yes it is possible, I
don't see that as a big problem.
All that needs is to lodge the public key to open an account.
To do any transaction would just require signing a generated transaction
request.
Keyid should be enough for an account identifier, but to be totally (well
within the bounds of probability less than that required for 6 impossible
things before breakfast) safe you could use the complete public key of the
recipient to make the transfer.
keyid risk is 1 in 2^32 (almost 1 in 4.3 billion, but I suppose it could be
manipulated)
this risk could be mitigated by displaying fingerprint of that key lodged
with the service.
fingerprint risk is 1 in 2^160 (possibly a bit worse than that, not too sure
of all the inner workings)
Of course there would always be the risk of a total key collision but that
is unthinkable.
cya, Andrew...
This e-mail and any attachment is for authorised use by the intended recipient(s)
only. It may contain proprietary material, confidential information and/or be subject
to legal privilege. It should not be copied, disclosed to, retained or used by, any
other party. If you are not an intended recipient then please promptly delete this
e-mail and any attachment and all copies and inform the sender. Thank you.
---
You are currently subscribed to e-gold-list as: [email protected]
To unsubscribe send a blank email to [EMAIL PROTECTED]
Use e-gold's Secure Randomized Keyboard (SRK) when accessing your e-gold account(s)
via the web and shopping cart interfaces to help thwart keystroke loggers and common
viruses.