SigSpoof: Spoofing signatures in GnuPG, Enigmail, GPGTools and python-gnupg (NeoPG blog post)

PDF Document

It appears your Web browser is not configured to display PDF files. Download adobe Acrobat or click here to download the PDF file.

License

Creative Commons Licence

Creator(s)

Created date

April 15, 2019

Critical Commentary

2018/06/13: Blog post on the "SigSpoof". Marcus Brinkmann found this vulnerability that allows spoofing “signed” messages that are not actually signed. This post proves the vulnerability and shows the medias' reactions

Language

English

Group Audience