From 4224d0b9c01eeb8cb7084f27ca272ed3357de661 Mon Sep 17 00:00:00 2001 From: mdw Date: Tue, 13 Sep 2005 15:25:20 +0000 Subject: [PATCH] Formatting fixes. --- catcrypt.1 | 15 ++++++++++++++- catsign.1 | 3 ++- 2 files changed, 16 insertions(+), 2 deletions(-) diff --git a/catcrypt.1 b/catcrypt.1 index ba3e266..c89ff4e 100644 --- a/catcrypt.1 +++ b/catcrypt.1 @@ -544,7 +544,8 @@ All messages. All output written has been checked for authenticity. However, output can fail madway through for many reasons, and the resulting message may therefore be truncated. Don't rely on the output being complete until -.B OK is printed or +.B OK +is printed or .B catcrypt decrypt exits successfully. .SS "encode" @@ -646,6 +647,18 @@ that, then \(en leaking intermediate values often voids security warranties. But it does avoid the usual problem with separate signing and encryption that a careful leak by the recipient can produce evidence that you signed some incriminating message. +.PP +Note that +.BR catcrypt 's +signatures do +.I not +provide `non-repudiation' in any useful way. This is deliberate: the +purpose of signing is to convince the recipient of the sender's +identity, rather than to allow the recipient to persuade anyone else. +Indeed, given an encrypted and signed message, the recipient can +straightforwardly construct a new message, apparently from the same +sender, and whose signature still verifies, but with arbitrarily chosen +content. .SH "CRYPTOGRAPHIC THEORY" Encryption of a message proceeds as follows. .hP 0. diff --git a/catsign.1 b/catsign.1 index b4b2ec3..145ca65 100644 --- a/catsign.1 +++ b/catsign.1 @@ -498,7 +498,8 @@ All messages. All output written has been checked for authenticity. However, output can fail madway through for many reasons, and the resulting message may therefore be truncated. Don't rely on the output being complete until -.B OK is printed or +.B OK +is printed or .B catsign verify exits successfully. .SS info -- 2.11.0