2018/06/13: Blog post on the "SigSpoof". Marcus Brinkmann found this vulnerability that allows spoofing “signed” messages that are not actually signed. This post proves the vulnerability and shows the medias' reactionsRead more
2019/07/16:
The aim of this article is very clear right from the start: to convince the readers not to use PGP. The first paragraph set the pace:
Cryptography engineers have been tearing their hair out over PGP's de ciencies for (literally) decades.
...Read more
EFAIL Usenix paper, released (in a draft version) on may 14, 2018 due to embargo break. It describes the EFAIL attacks (technique: malleability gadgets) to reveal plaintext of emails encrypted with S/MIME and OpenPGP.Read more
2019/01/04: Article on the developpement of Encryption by ThunderbirdRead more
2018/05/21: Article on who is concerned by the EFAIL vulnerabilities and why email, in general, isn't securedRead more
2018/05/24: Article on EFAIL vulnerability, email vulnerabilities and the patching of those vulnerabilities. It questions the safety of emails in generalRead more
2018/05/14: EFF statement regarding the newly disclosed vulnerabilities affecting PGP and S/MIME usersRead more
2014/08/13: Green's criticisms towards OpenPGPRead more
2018/05/22: Hanno Böck's thoughts and opinion about the EFAIL vulnerability, OpenPGP and S/MIME,Read more
2018/05/22: Article analyzing and answering questions linked to the EFAIL vulnerabilitiesRead more