PGP ( Pretty Good Privacy )

by Hye Jin Youn & Security KAIST
Sponsored by Initech.

Copyright (C) May 1999, Hye Jin Youn and Security KAIST

You may freely redistribute or republish this article, provided the following conditions are met as long as it is for non-commercial purposes. Otherwise permissions should be granted:

1. This article is left intact.

2. Proper credit is given to its authors; Hye Jin Youn and the Security KAIST

Contents
I. Introduction
1) E-mail privacy
2) E-mail security

II. Basic Cryptographic Algorithm
1. What is Cryptography
2. Conventrional vs Public Cryptosystem
3. Hash Function
4. CryptoAnalysis and Attack on Cryptosystems

III. What is PGP
1. Why PGP is so popular?
2. PGP ÀÇ ±â´É
3. Structure
4. Cryptographic keys
5. Key Ring
5. Certification

IV. Certification

V. Let's use PGP

VI. Reference


Instruction

1. E-mail privacy

ÀÚ½ÅÀÇ °³ÀÎÀûÀÎ Á¤º¸¸¦ º¸³¾¶§ ¿ì¸° ¿±¼­( postcard )¸¦ ÀÌ¿ëÇؼ­ º¸³»´Â ÀÏÀº Á»Ã³·³ ÇÏÁö ¾Ê½À´Ï´Ù. ¶§·Ð, µ¿ºÀÀ» Çؼ­ º¸³»´Â °æ¿ìµµ ÀÖ°í, ÀÚ½ÅÀÌ º¸³ÂÀ½À» ¾Ë¸®´Â »çÀεµ ÇÕ´Ï´Ù.

e-mailµµ ÀÌÁ¦ ¿ìÆíó·³ ¿ì¸®ÁÖÀ§¿¡¼­ ¸¹ÀÌ ½á¿À´Â ÇϳªÀÇ Àü´Þ ¼ö´ÜÀ¸·Î ÀÚ¸®Àâ°Ô µÇ¾ú½À´Ï´Ù.

±×·±µ¥, ÀÌ e-mailÀº ¸ñÀûÁö±îÁö µµÂøÇÒ¶§ ¼ö¸¹Àº host¸¦ °Åó°¡´Â °æ¿ì°¡ º¸ÅëÀÔ´Ï´Ù. ¶ÇÇÑ Áß°£¿¡ Á¦ 3ÀÚ¿¡ÀÇÇØ °¡·Îä¿©¼­ º¸¿©Áö´Â °ÍÀº ¹°·Ð, º¯Á¶°¡ µÇ¾ú´ÂÁö¸¦ ¾Ë¾Æä±â¶õ ±×¸® ½¬¿îÀÏÀÌ ¾Æ´Õ´Ï´Ù. ±×·¸´Ù¸é ¿ì¸° ¾î¶»°Ô ÇÒ¼öÀÖÀ»±î¿ä? ÀüÀ￵ȭµéÀ» º¸¸é ÀÚ½ÅÀÇ ±º´ë¿¡°Ô ¸í·ÉÀ» º¸³»±â À§ÇØ ¾ÏÈ£¸¦ »ç¿ëÇÕ´Ï´Ù. Áï, Àû±ºÀÌ ±× ¸í·ÉÀ» º¸¾Æµµ ¾Ë¾Æä±â ¾î·Æ°Ô Çϱâ À§Çؼ­ÀÔ´Ï´Ù.

pgpµµ ÀÌ·± ¹æ¹ýÁß Çϳª·Î žÀ¸¸ç, ÇöÀç ÀüÀÚ¿ìÆíµµ±¸·Î¼­ ³Î¸® »ç¿ëµÇ°í ÀÖ½À´Ï´Ù.

2. E-mail security

1) Confidentiality : ¼ö½ÅÀÚ¸¦ Á¦¿ÜÇÑ ³ª¸ÓÁö ( Á¦ 3ÀÚ )°¡ ¸Þ¼¼Áö¸¦ º¸Áö ¸øÇÏ°Ô ÇÏ´Â ±â´É.

2) Message Integrity : Àü¼ÛÁß Á¦ 3ÀÚ¿¡ ÀÇÇØ ¸Þ¼¼Áö°¡ º¯Á¶µÇ¾ú´ÂÁö¸¦ È®ÀÎ.

3) User authentiaton : ¸Þ¼¼Áö¸¦ º¸³½»ç¶÷ÀÌ È®½ÇÇÑÁö¸¦ È®ÀÎ.

4) Nonprepudiation of origin : ¼Û½ÅÀÚ°¡ º¸³»°í ¾Èº¸³Â´Ù°í ÇÒ¼ö ¾ø°Ô ¸¸µç´Ù.

5) Non-deniablity of recipt : ¼ö½ÅÀÚ°¡ ¹Þ°í ¾È¹Þ¾Ò´Ù°í ¸øÇÏ°Ô ¸¸µç´Ù.

6) Message replay prevention : Áß°£¿¡¼­ Áö³ª°¡´Â mailÀ» Àâ¾Æ³õ¾Ò´Ù°¡ ´Ù½Ãº¸³»´Â °ø°ÝÀ» ¹æÁö.

* À§ÀÇ 1),2),3),4) 4°¡Áö´Â pgp¿¡¼­ Áö¿øÇϳª, 5),6),¹øÀº ¾ÆÁ÷ Áö¿øµÇ°í ÀÖÁö ¾Ê´Ù.

II. Basic Crptographic Algorithm
1. What is Cryptographic?

´õÀÌ»ó CryptographicÀº ±º´ë³ª Á¤ºÎÀÇ ¼ÒÀ¯¹°ÀÌ µÇÁö´Â ¾Ê´Â´Ù. ¿ì¸®´Â ÀÌ°ÍÀ» »çÀûÁ¤º¸¸¦ º¸È£ÇÏ´Â ¼ö´Ü»Ó ¾Æ´Ï¶ó, ÀÎÁõ, ¼­¸í ÀüÀÚ»ó°Å·¡ µîÀ¸·Î ÀÌ¿ë¹üÀ§¸¦ È®»ê½Ãų¼ö ÀÖ´Ù.

¶ÇÇÑ crytographicÀº ÀÌÁ¦ ¼öÇÐÀû Áõ¸íÀ» ÅëÇؼ­ Ç®±â¾î·Á¿òÀ» ÀÔÁõÇϸç, °è»ê¶ÇÇÑ »ç¶÷ÀÌ °è»êÇÒ¼ö ÀÖ´Â ¹üÀ§¸¦ ³Ñ¾î¼¹´Ù. Çö´ë¿¡¼­ °¡À帹ÀÌ »ç¿ëµÇ´Â ¾Ë°í¸®ÁòÀ¸·Î´Â key¸¦ ¾´´Ù .
Áï, ¾Ïȣȭ( encrypt )¿Í º¹È£È­ ( decrypt )¸¦ key¸¦ ÀÌ¿ëÇÏ¿© ÇÏ´Â °ÍÀÌ´Ù.

2. Conventional and Public key Cryptosystem

* key¸¦ ¾²´Â CryptosystemÁß °¡Àå ¸¹ÀÌ ¾²ÀÌ´Â µÎ Á¾·ù¸¦ ¼Ò°³ÇÏ°Ú´Ù. ÀÌ µÎÁ¾·ù´Â pgp¿¡¼­µµ ¾²À̹ǷΠÀß ºÁµÎ±â¸¦ ¹Ù¶õ´Ù.

1) Conventional crytosystem

°ü¿ë ¾ÏÈ£ ¾Ë°í¸®ÁòÀ̶ó°íµµ Çϴµ¥, ¾ÏȣȭµÉ¶§ÀÇ key¿Í º¹È£È­µÉ¶§ÀÇ key°¡ °°Àº keyÀÌ´Ù. Áï
Kd = Ke
±×·¸±â ¶§¹®¿¡ symmetric cipher¶ó°íµµ ÇÑ´Ù.

ÀåÁ¡À¸·Î´Â ¾Ïȣȭ¿Í º¹È£È­¿¡¼­ ºü¸¥ ¼Óµµ¸¦ º¸ÀÌ°í ÀÖ´Ù.

´ÜÁ¡Àº ¼Û½ÅÀÚ¿Í ¼ö½ÅÀÚ´Â °°Àº key¸¦ °¡Áö°í ÀÖ¾î¾ßÇϹǷÎ, key°¡ Àü´ÞµÇ´Â °úÁ¤¿¡¼­ ³ëÃâµÉ °¡´É¼ºÀÌ Ä¿Áö¹Ç·Î Å°ºÐ¹è°¡ ¾î·Æ´Ù.

¾²ÀÌ´Â ¾Ë°í¸®ÁòÀ¸·Î´Â,

  • DES( Data Encryption System ) : 56 bit key »ç¿ë.
  • IDEA( International Data Encryption Algorith ) : 128 bit
  • RC5
  • CAST-128

3). Public Key Algorithm

¾Ïȣȭ key¿Í º¹È£È­ Key°¡ ´Ù¸£±â¶§¹®¿¡ Asymmetric cipher¶ó°íµµ ºÒ¸®¿ì¸ç, À̶§¿¡ public key´Â ³²¿¡°Ô ¾Ë·ÁÁÖ°í. private key¸¸ ÀÚ½ÅÀÌ º¸°üÇϱ⠶§¹®¿¡ secret key¶ó°íµµ ÇÑ´Ù. Áï, Kd != Ke

digital signature°¡ ±¸Çö°¡´ÉÇϸç, °ø°³Å°´Â ¾î¶² »ç¶÷ÀÌ ¾Ë¾Æµµ »ó°ü¾øÀ¸¹Ç·Î Å° ºÐ¹è¿¡µµ ¾î·ÆÁö ¾Ê´Ù.

´ÜÁ¡Àº Áö±Ý±îÁöÀÇ ¾Ë°í¸®Áò ¸ðµÎ conventional cryptosystem¿¡ ºñÇØ ´À¸° ¼Óµµ¸¦ º¸ÀÌ°í ÀÖ´Ù´Â °ÍÀÌ´Ù.

ÇöÀç ¸¹ÀÌ ¾²ÀÌ´Â ¾Ë°í¸®ÁòÀ¸·Î´Â,

  • RSA( Rivest-Shamir-Adelman ) : 1024bit key
  • LUC : exponential ÇÔ¼ö ´ë½Å Lucas functionÀ» ÀÌ¿ë.

4). Hash function

5). Crypto-Analysis & Attack on Cryptosystem

  • Ciphertext-only attack : M( ¸Þ¼¼Áö )³»¿ë »Ó¸¸ ¾Æ´Ï¶ó, key¸ðµÎ¸¦ ¾ËÁö ¸øÇÒ°æ¿ì ¾ð¾îÀÇ Æ¯»öÀ» ÀÌ¿ë( ¿ø¹®ÀÇ Åë°èÀû Ư¼º )ÇÏ¿© °æ¿ì¸¦ ´Ù ´ëÀÔÇÏ¿© Ǭ´Ù.

  • Known-plaintext attack : M °ú encrypted MÀ» ¾Ë°í ÀÖÀ» °æ¿ì Key¸¦ ã¾Æ³»¾î ´ÙÀ½ M2¸¦ Àо´Â °Í.

  • Chosen-plaintext attack : M°ú ¾à°£ ´Ù¸¥ M'µîÀÌ encryptµÈ ÆÄÀÏÀ» ºñ±³Çؼ­ ¾Ë¾Æ³»´Â °Í.

  • Man-in-the-middle attack : C¶ó´Â »ç¶÷ÀÌ B¶ó°í Çϸç A¿¡°Ô °ø°³Å° Kp(B)¸¦ ÁÖ¾úÀ»¶§ A´Â B¿Ü¿¡ ¾Ë¾Æ¼­´Â ¾ÈµÇ´Â ¹®¼­¸¦ CÀÇ key·Î encryptÇؼ­ º¸³»¹Ç·Î Áß°£¿¡ C¿¡°Ô °¡·ÎäÀ̸é, C°¡ º¼¼ö ÀÖ´Ù. ÀÌ ¿Ü¿¡ C¶ó´Â »ç¶÷ÀÌ ¹®¼­¸¦ ÁÖ¾úÀ»¶§, A´Â °ÅÁþÁ¤º¸¸¦ ¹Ï¾î¹ö¸®°Ô µÈ´Ù.

* »ç½Ç °­·ÂÇÑ ¾Ë°í¸®ÁòÀ̶õ °ÍÀº À§ÀÇ 3°¡Áö´Â Ç®·Á¼­ ¾ÈµÈ´Ù.

6). The Notion

III. What is PGP
1. Why PGP is popular?

2. pgpÀÇ ±â´É

1) Confientiality

A°¡ ÀÚ½ÅÀÇ °ø°³Å° Kp(A)¸¦ °ø°³ÇÏ°í, ÀÚ½ÅÀÇ secret key( private key ) Ks(A)¸¦ Àß °£¼öÇÏ°í Àֱ⸸ ÇÑ´Ù¸é. B°¡ A¿¡°Ô ºñ¹Ð¹®¼­ ( M )À» Kp(A)·Î encryptÇؼ­ º¸³»¸é, ÀÌ MÀ» decryptÇؼ­ ÀÐÀ»¼ö ÀÖ´Â »ç¶÷Àº A¹Û¿¡ ¾ø´Ù.
Áï, ±×¸²À¸·Î º¸¸é,

2) Authentication

Digital signature :
public keyÀÇ Áß¿äÇÑ ±â´ÉÁß ÇϳªÀÌ´Ù.
°¡·É A¶ó´Â »ç¶÷ÀÌ Kp(B)·Î encrypted MÀ» ÀÛ¼ºÇÑ ÈÄ Ks(A)·Î digital signature¸¦ Çؼ­ º¸³»¸é, B»Ó¸¸ ¾Æ´Ï¶ó ¸ðµç Kp(A)¸¦ °®Àº »ç¶÷Àº Kp(A)·Î ±× digital signature¸¦ º¼¼öÀÖÀ¸³ª, signature´Â A¹Û¿¡ ÇÒ¼ö ¾øÀ¸¹Ç·Î A°¡ º¸³ÂÀ½À» ¾Ë¼ö ÀÖ´Ù.

3) Message integrity

A´Â MÀ» Hash¿¡ ³ÖÀ¸¸é ÀÏÁ¤±æÀÌÀÇ ÀÛÀº bit·Î ³ª¿Â´Ù.
M' ÀÌ°ÍÀ» Ks(A)·Î ¾Ïȣȭ ÇÏ¿© , M¿¡ ºÙ¿©¼­ º¸³»¸é, B´Â Kp(A)·Î À̸¦ Ç®°í, MÀ» Hash¸¦ ÀÌ¿ëÇÏ¿© ¸¸µçÈÄ M'¿Í ºñ±³ÇÏ¿©, Á¦ 3ÀÚ¿¡ ÀÇÇØ ¸Þ¼¼Áö°¡ º¯Á¶µÇÁö ¾Ê¾Ò´Â°¡¸¦ ¾Ë¼ö ÀÖ´Ù.

4) Compression

- pgpÀÇ optionÀ¸·Î ÇÒ¼öµµÀÖ°í, ¾ÈÇÒ¼öµµ ÀÖ´Ù.

- º¸Åë Signature ÈÄ¿¡ encryptÀü¿¡ Çϴµ¥, ±× ÀÌÀ¯´Â

  • signature°¡ ÀÖ´Â ¿øº»°ú, compressionµÇ M µÎ°¡Áö¸¦ ÀúÀåÇÒ¼ö ÀÖ´Ù.

  • Zip Algorithm¿¡¼­ ±âÀεǴµ¥,
    ¸¸¾à, sinatureÀü¿¡ compressionÀ» ÇÑ´Ù¸é, º¸Åë MÀ» decompressionÇÏ¿© Data¸¦ º»ÈÄ signature·Î Áß°£¿¡ °íÃÄÁ³´ÂÁö, È®ÀÎÀ» Çϴµ¥, À̶§ ´Ù½Ã compressionÀ» ÇؾßÇÑ´Ù.
    ÇÏÁö¸¸, compressionÀº ¼Óµµ¿Í ¾ÐÃà·ü¿¡ µû¶ó ´Þ¶óÁö¹Ç·Î, µÎ dataÈ®ÀÎÀÌ ¾î·Á¿öÁö°í ¹ø°Å·Î¿öÁø´Ù.

5) E-mail Compatibility

- pgp¿¡¼­ decrypt´Â 8bit·Î µÇ´Âµ¥ e-mailÀº ASCÀÎ 7bit±îÁö ¹Û¿¡ Áö¿øÀÌ µÇÁö ¾Ê´Â´Ù. ±×·¯¹Ç·Î decrypted message 3 blockÀ» 6bit 4 blockÀ¸·Î ¸¸µé¾îÁØ´Ù. À̶§ radix 64-conversionÀÌ »ç¿ëµÈ´Ù.

6) Segmentaion & Reassembly

- PGP¿¡¼­´Â Message°¡ ¸Å¿ìÅ©¸é ÇѲ¨¹ø¿¡ º¸³»Áö ¾Ê°í Àß¶ó¼­ º¸³½´Ù.
¶ÇÇÑ ¹Þ¾ÒÀ»¶§´Â ¾Ë¾Æ¼­ ºÙ¿©ÁØ´Ù.

3. Structure

4. Cryptographic Keys

- º¸Åë pgp´Â 4°¡Áö Á¾·ùÀÇ key¸¦ »ý¼ºÇÑ´Ù.
Key Indentifiers :
»ç½Ç public key¿¡¼­ »ç¿ëµÇ´Â key´Â ¹«Ã´ ±æ´Ù. ±×·¸±â ¶§¹®¿¡ ¸¸¾à, ¿©·¯°³ÀÇ pgpÀÇ ½ÖÀ» ã±â¶ó´Â ¹«Ã´ Èûµé¾î Áú°ÍÀÌ´Ù.

À̶§ keyÀÇ ±¸º°À» ½±°Ô ÇϱâÀ§ÇØ hash function¿¡ ³Ö¾î ÀÏÁ¤ÇÑ ±æÀÌÀÇ bit¼ö·Î ³ªÅ¸³½ °ÍÀ» KeyID¶ó°í ÇÑ´Ù.

5. Key Rings

- pgp¸¦ óÀ½ ¼³Ä¡ÇÏ¸é ¾Æ·¡ÀÇ È­ÀÏÀÌ ¸¸µé¾îÁø´Ù. secring.pgp, pubring.pgp, randseed.bin. config.txt°¡ ±×°ÍµéÀÌ´Ù.
¿¹Á¦ º¸±â

ÀÌ ¿¹Á¦¿¡¼­ pgp -kg´Â óÀ½ Å°¸¦ »ý¼ºÇÏ´Â °ÍÀÌ´Ù. ¸¶Áö¸·ºÎºÐÀ» º¸¸é ³×°³ÀÇfileÀÌ ¸¸µé¾îÁö´Â °ÍÀ» ¾Ë¼öÀÖ´Ù.

IV. Certification
- pgpÀÇ ¾Æų¶ó½º°ÇÀ̶ó°í ºÒ¸®¿ì´Â ¾îÅÃÀÌ ¹Ù·Î main-in-the-middle-attackÀÌ´Ù.

±×·¯¹Ç·Î Å°¸¦ ¹Þ¾Æ¿Ã¶§´Â ¸¹Àº ÁÖÀǸ¦ ±â¿ï¿©¾ßÇϴµ¥, 4°¡Áö ¹æ¹ýÀ» º¸¸é,

1. floppy disk¿¡ ´ã¾Æ¼­ Á÷Á¢ Àü´Þ ¹Þ´Â¹ý.:

ÀÌ´Â °¡Àå ¿ø½ÃÀûÀÎ ¹æ¹ýÀ̳ª °¡Àå È®½ÇÇÑ ÀÎÁõ ¹æ¹ýÀÌ´Ù.

2. finger print ÀÌ¿ë.

»ó´ë¹æÀÇ ÀüÈ­¸ñ¼Ò¸®¸¦ ¾Æ´Â °æ¿ì hash function¿¡ ³Ö¾î¼­ Å°¸¦ ÀÏÁ¤ÇÑ bit·Î ³ªÅ¸³»¸é À̸¦ ÀüÈ­±â¸¦ ÅëÇؼ­ È®ÀÎÇÑ´Ù. ÀÌ ¹æ¹ýµµ È®½ÇÇϳª, ¸¸¾à attaker°¡ ÀüÈ­¸ñ¼Ò¸®±îÁö Èä³»³½´Ù¸é ÇÒ¼ö ¾ø´Ù. --;

3. signatureÈ®ÀÎ.

¾ÆÁÖ È®½ÇÇÑ ¹æ¹ýÀº ¾Æ´ÏÁö¸¸, Æí¸®ÇÔÀ¸·Î °¡Àå ¸¹ÀÌ ¾²ÀÌ´Â ¹æ¹ý. 2)¶Ç´Â 3)¹øó·³ ÀÚ½ÅÀÌ È®ÀÎÇÏ¿© È®½ÇÇÑ °æ¿ì, ÀÚ½ÅÀÇ signature¸¦ ´ãÀ¸·Î ÀÎÇÏ¿© ´Ù¸¥ »ç¶÷¿¡°Ô ¾Ë·ÁÁÜ ¶ÇÇÑ, ±× ¹Ý´ë·Î ´Ù¸¥ »ç¶÷ÀÇ signature¸¦ º½À¸·Î ÀÎÇÏ¿©, ½Å·Úµµ¸¦ ÃøÁ¤ÇÑ´Ù.
4. certification

- °ø°³Å° ÀÎÁõ¿¡ ÇÊ¿äÇÑ °ªµé.

1) key legitimacy

  • A ID°¡ ºÙÀº ÀÌ key´Â ÁøÂ¥ AÀÇ °ÍÀΰ¡?

  • KEYLEGIT field

    • unknown or undefined trust
    • key ownership not trusted
    • marginal trust in key ownership
    • complete trust in key ownership

  • * owner trust ¿Í signature turst¿¡ ÀÇÇØ ÀÚµ¿À¸·Î »ý¼ºµÇ¾îÁø´Ù.

2) Owner Trust

  • Áß°³Àڷμ­ÀÇ A¸¦ ¾î´ÀÁ¤µµ ½ÅÀÓÇÒ¼ö Àִ°¡?

  • ONWERTRUST field

    • undefined trust
    • unknown user
    • usually not trusted to sign other keys
    • usually trusted to sign other keys
    • always trusted to sign other kyes
    • this key is present in secret key ring ( ultimate trust )

  • * ´Ù¸¥ »ç¶÷ÀÇ °ø°³Å°¸¦ ÀÚ½ÅÀÇ pubring.pgp¿¡ µî·Ï½Ãų¶§ ½º½º·Î ÁöÁ¤ÇØÁØ´Ù.

3) Signature turst

  • BÀÇ key¿¡ AÀÇ ¼­¸íÀÌ Àִµ¥ ¾î´ÀÁ¤µµ ¹ÏÀ»¸¸ ÇÑ°¡?

  • SIGTRUST field

    • undefined trust
    • unknown user
    • usually not trusted to sign other keys
    • usually trusted to sign other keys
    • always trusted to sign other kyes
    • this key is present in secret key ring ( ultimate trust )

  • * ¼­¸íÇÏ´Â »ç¿ëÀÚÀÇ owner trust¿¡¼­ º¹»çÇÑ´Ù.

V. Let's use PGP
%> pgp -c textfile
¹®¼­¸¦ ¾Ïȣȭ Çϱâ

%> pgp -cw textfile
¿ø·¡ÀÇ Æò¹®À» Áö¿ì±â

¿¹Á¦ º¸±â

%> pgp textfile.pgp
º¹È£È­Çϱâ.

%> pgp -kg
Å°¸¸µé±â ( key gerneration )

¿¹Á¦ º¸±â

%> pgp -kv
Å° º¸±â ( key view )

%> pgp -ke
Å° º¯°æÇϱâ ( key edit )

¿¹Á¦ º¸±â

%> pgp -kx UserID file
ÀÚ½ÅÀÇ Å°¸¦ ´Ù¸¥ »ç¶÷µé¿¡°Ô ÀüÆĽÃÅ°´Â ¹æ¹ýÀ¸·Î´Â Å° È­ÀÏ Àüü¸¦ º¹»çÇؼ­ ¿Å±â´Â ¹æ¹ýµµ ÀÖÁö¸¸ ÀÌ ¹æ¹ýÀº ¿©·¯ Á¾·ùÀÇ À§ ÇèÀÌ µÚµû¸¥´Ù.

±×·¯¹Ç·Î ÀÚ½ÅÀÌ º¸³»°íÀÚ ÇÏ´Â Å°¸¸À» »©³»¾î¼­ º¸³»¾î¾ß ÇÑ´Ù. ÀÌ·² ¶§ ¾²´Â ¿É¼ÇÀÌ "-kx" ¿É¼ÇÀÌ´Ù . ¿É¼Ç µÚ¿¡ ³ª¿À´Â °ÍÀº »©³¾·Á°í ÇÏ´Â Å°ÀÇ User ID¿Í Å°¸¦ º¹»çÇؼ­ ´ãÀ» È­ÀÏÀÇ À̸§ÀÌ´Ù

%> pgp -kr
Å° Áö¿ì±â ( key remove )
»ç¿ëÀÚ ÀÚ½ÅÀÇ °ø°³Å° È­ÀÏ¿¡ ÀÖ´Â ÀÚ½ÅÀÇ Å°³ª ´Ù¸¥ »ç¶÷ÀÇ Å°¸¦ Áö¿ï ¶§ ¾²´Â ¿É¼ÇÀÌ "-kr" ¿É¼ÇÀÌ´Ù. ÀÚ½ÅÀÇ Å°ÀÏ °æ¿ì¿¡´Â ¸ÅĪµÇ´Â ºñ¹ÐÅ°µµ Áö¿ï ¼ö ÀÖ´Ù.

%> pgp -m cipher.asc
¾ÏÈ£¹®À» ¿É¼Ç ¾øÀÌ º¹È£È­ÇÏ¸é º¹È£È­µÈ Æò¹® È­ÀÏÀÌ »ý±â´Â µ¥ ÀÌ´Â Æò¹®°ú ¾ÏÈ£¹®ÀÇ ÇѽÖÀ» ¸¸µå´Â °ÍÀ̱⠶§¹®¿¡ »ç¿ëÀÚÀÇ À¯ÀÇ°¡ ÇÊ¿äÇÏ´Ù.

ÀÌ·¯ÇÑ ¹®Á¦Á¡À» ÇØ°áÇϱâ À§Çؼ­ "-m" ¿É¼ÇÀ» »ç¿ëÇÏ´Â µ¥ ÀÌ·¸°Ô ÇÏ¸é º¹È£È­µÈ ³»¿ëÀÌ È­¸é¿¡ º¸ ¿©Áú »ÓÀÌ°í ´Ù º¸°í ³­ ÈÄ¿¡ ÇÏµå µð½ºÅ©¿¡ ´ãÀ» °ÍÀÎÁö¸¦ ¹°¾î º»´Ù. ¿©±â¼­ no¸¦ ÀÔ·ÂÇÏ¸é º¹È£È­ µÈ ³»¿ëÀº µð½ºÅ©¿¡ ´ã°ÜÁö Áö ¾Ê´Â´Ù.

¿¹Á¦ º¸±â

%> pgp -s textfile
digital signature´Þ±â

¿¹Á¦ º¸±â

* ÀÌ ¹Û¿¡ ¿©·¯°¡Áö°¡ ÀÖÀ¸³ª, ¿©±â¼­´Â ´õÀÌ»ó ´Ù·çÁö ¾Ê°í, manual page¸¦ Âü°íÇÏ½Ã±æ ¹Ù¶õ´Ù.

VI. Refernce

http://www.eff.org/pub/Privacy/chaum_privacy_id.article
http://www.ssh.fi/tech/crypto/intro.html
http://www.animatedsoftware.com/hightech/philspgp.htm
http://www.internetworld.com/print/monthly/1995/02/feat34.htm
http://www.stack.nl/~galactus/remailers/bg2pgp.txt

(1) PGP documentation
by Phil Zimmermann

(2) alt.security.pgp: Frequently Asked Questions
by Jeff Licquia, May 25, 1995

(3) Why Should You Sign Your Own PGP Public Key?
by Francis Litterio

(4) EFH PGP Workshop
by Paul Elliott, Electronic Frontiers Houston

(5) The Beginner's Guide to Pretty Good Privacy
by Bill Morton, Version 1.1, April 13, 1995

(6) Known future developments in PGP servers and related subjects

(7) Four11 Directory Services

(8) Differences in International PGP Version by Stale Schumacher

(9) Cryptography And network security
- william stallings