That depends on what Phil Smith III meant by "Ah, ok. Reveals my ignorance of how PGP works. Voltage SecureMail uses both, providing that non-repudiation; I guess I assumed everyone did!"
-- Shmuel (Seymour J.) Metz http://mason.gmu.edu/~smetz3 ________________________________________ From: IBM Mainframe Discussion List <[email protected]> on behalf of zMan <[email protected]> Sent: Monday, August 26, 2019 5:27 PM To: [email protected] Subject: Re: vendor distributes their private key Isn't that what was just discussed? What am I missing here? On Mon, Aug 26, 2019 at 4:42 PM Seymour J Metz <[email protected]> wrote: > The proper way to provide encryption and non-repudiation is to have two > key pairs. You sign a message using your private key. People wanting to > send you encrypted data encrypt using your public key. So if foo wants to > send bar a signed encrypted document, foo double encrypts it with foo's > private key and bar's publickey. -- zMan -- "I've got a mainframe and I'm not afraid to use it" ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
