public-key: the wrong model for email?

[Ed Gerck]

Ben Laurie wrote:
> <snip> I am suggesting that if 
> you cannot rely on the recipient (or their machine) to manage keys 
> properly, then you also cannot rely on them to manage decrypted emails 
> properly.

Yes. This thread is about the observation that, even if the recipient
manages keys perfectly well, the recipient may not know he is
compromising the sender's security. The sender is in the recipient's
hands with PKC, whereas the sender usually has most (if not all) the
risk.

Cheers,
Ed Gerck

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com