|
Basic Ideas
|
Previous Top Next |
| · | Anonymous Keys
|
| MPGP automatically generates and exchanges so-called "anonymous" keypairs in order to secure conversations with people you dont know well. On initial installation, MPGP will ask you to make an anonymous key (you can also regenerate a new one whenever you want). This anonymous key is generally shared with anyone who wants to send you encrypted information - it doesn't reveal anything about you or let other people read stuff sent to you, it just lets people send you encrypted information. Anonymous keys are like temporary, throwaway keys that are safe to hand out to any idiot who wants to send you a message.
|
| · | Permanent Keys
|
| You may also create one or more non-anonymous, permanent keys, using identities of your choice. You dont have to use your real name or email of course, but these keys would be keys that you would use to reliably identify yourself to your friends. You might submit these keys to internet keyrings or email them to your friends, so they have an independent (ie not through irc) way of identifying you. You can keep different identities for different groups of friends, etc. With these keys you will be able to "prove" your identity to someone who already has your non-anonymous key.
|
|
|
| The only way for a man-in-the-middle attack to intercept traffic encoded to a non-anonymous key is if the same person could intercept (and dynamically modify them so that you dont see the real values of) BOTH your originally exchanged keys (which you did over email or a forum at an earlier time), AND your irc conversations in real time. This is extremely unlikely. And note that it's completely safe for anyone to see the public keys you exchange, as long as they arent able to dynamically modify them so that the keys you see are not the ones your partner sent, but are instead keys owned by the interceptor.
|
|
|