PGP defect reveals encrypted messages

NEWS By Robert Lemos Messages encrypted with the Pretty Good Privacy (PGP) algorithm could fall prey to a technique that fools senders into decoding their own secret messages, according to researchers. The attack is known to work against the widely used open-source encryption software GNU Privacy Guard, but requires that the would-be spy first intercept the message and then convince the sender to decrypt what seems to be a second message. A noted cryptographer, however, stressed that PGP is not broken. "If I use this, I get one message - I don't get your (secret) key," said Bruce Schneier, founder and chief technology officer of network protection provider Counterpane Internet Security. Schneier proved the existence of the flaw with Jonathan Katz, a professor at the University of Maryland, and with one of Katz's graduate students.
Details of the attack method will be given at a lecture at the Information Security Conference in Brazil, later this year, and paper on the attack method is available now at the Counterpane site. The attack takes advantage of a flaw that existed in the PGP standard until last year. Because the defense against the attack requires that developers break compatibility with older versions, the makers of many encryption programs haven't fixed the problem. That's the case with GnuPG, said Jon Callas, principal author of the OpenPGP formats standard for the Internet Engineering Task Force, the group responsible for setting technical standards on the Internet. "Schneier and Katz have come up with a practical attack against this weakness that we have known about for a while," he said. "It's mainly a con attack--one person has to convince another to do something." PGP is an example of a public-key encryption system. Each person using PGP has a private key, which they keep secret, and a public key, which they publish. A message encrypted with the public key can be decrypted by the private key, and vice versa. For an in-depth explanation of how PGP works and how the defect takes hold, click here http://www.silicon.com/a55074 Robert Lemos writes for News.com