On Friday 27 April 2007, Mario Ruiz wrote: > how do you decrypt your older messages after the current certificates > are revoked? usually every 2 years.
A "certificate" is a two part key really - a public (certified) part, and a private part. If you revoke your key (or somebody else who generated your key and thus may hold a revocation key) it means that you cannot *sign* validly with it any more. But there is absolutely nothing (other than convention, which may or may not be implemented in some cryptographic applications) actually stops you from encrypting / decrypting / signing - just when you check the signature it will result as invalid (expired key) Horst _______________________________________________ Gpcg_talk mailing list [email protected] http://ozdocit.org/cgi-bin/mailman/listinfo/gpcg_talk
