On Thu, 26 Mar 1998 13:04:29 -0700, you wrote:

>On Thu, 26 Mar 1998, Marco DI LEO wrote:
>
>> In fact, generally PGP uses IDEA to encrypt the data and RSA to protect
>> the random key used for the IDEA session.
>
>  Older versions of PGP do.
>  Newer versions prefer IDEA and Duffie-Hillman keys.
>  (Since the patent has expired on them and not on RSA)

Diffie-Hellman is not an encryption standard.  It is a protocol for
secure authentication over insecure channels, and it is designed to
eliminate the possibility of man-in-the-middle (aka "bucket brigade")
attacks.

 - Rick "I do messaging security for a living" Dickinson

    Enterprise ArchiTechs     | Views expressed on topics unrelated
  http://www.eArchiTechs.com  | to messaging are not those of my
NoSpam eMail:rtd@notesguy.com | company, and may not even be mine.