Software > PGP

Compatibility of gpg and very old pgp keys

Very old versions of PGP (2.x) used patented encryption algorithms (IDEA/RSA) to encrypt secret keys. As a philosophical matter, the GnuPG does not contain code for patented algorithms. The consequence is that gpg cannot decrypt and use old pgp secret keys. That means that gpg won't be able to do anything that would require your passphrase: decrypting a message sent to you, or signing a message, for example. However, public keys are not encrypted so gpg can still be used to encrypt messages to users with old keys (although they'll have to use something other than gpg to read the messages).

Attempting to use gpg with an old key will produce an error message like the following:

% gpg -s something.txt

gpg: protection algorithm 1 (IDEA) is not supported
gpg: the IDEA cipher plugin is not present
gpg: please see http://www.gnupg.org/why-not-idea.html for more information
gpg: no default secret key: unknown cipher algorithm
gpg: signing failed: unknown cipher algorithm

It's possible to add IDEA support back in by obtaining a patch and recompiling gpg. See the gnupg web page for details.

Site Index | Zoom | Admin
URL: http://wilcoxen.maxwell.insightworks.com/pages/1976.html
Peter J Wilcoxen, The Maxwell School, Syracuse University
Revised 01/06/2006