We do compression in PGP.
Does this step increase/decrease or either have any effect regarding the authentication of a message?
Asked
Active
Viewed 1,688 times
3
Mike Edward Moras
- 18,161
- 12
- 87
- 240
Sharmin
- 227
- 2
- 8
1 Answers
4
From RFC 4880 - Open PGP Message Format (emphasis added)
OpenPGP implementations SHOULD compress the message after applying the signature but before encryption.
As the signature provides authentication, and you specifically ask about authentication, I think that quote from the RFC should answer your question. Compression does not affect authentication of the message at all as the authentication step (signing) is applied before compression. See the question archie linked for other issues with compression.
