HTML MAils have no Security Concept and are to blame (Hanno's blog)

2018/06: Hanno Böck's toughts and opinions on HTML mails and its roles in the EFAIL vulnerabilitiyRead more

Negociation as a drawback?

The authors make a bold statement:

If we've learned 3 important things about cryptography design in the last 20 years, at least 2 of them are that negotiation and compatibility

...Read more
Critical Flaws in PGP and S/MIME Tools Can Reveal Encrypted Emails in Plaintext (TheHackerNews article)

2018/05/14: Article on the EFAIL vulnerbilities concerning OpenPGP and S/MIME encrypted emailRead more

How To Turn PGP Back On As Safely As Possible (EFF article)

2018/05/29: EFF recommendation for PGP users on how to react to the EFAIL vulnerabilities disclosureRead more

Major eFail Vulnerability Exposes PGP Encrypted Email -- UPDATED (Forbes article)

2018/05/14: Article reviewing the story of the EFAIL vulnerabilities concerning PGP encrypted emailRead more

Efail: What A Disclosure FAIL That Was! (RBS article)

2018/05/16: Article criticizing the handling of the EFAIL vulnerabilities disclosureRead more

By tracking versions? Example with PGP

This history is a very detailed and focused one and I really love the way most information is documented with links. It is a very useful source of primary and secondary documents...Read more

L'histoire de PGP by

L'histoire de PGP - 5 Juin 1991 : après plusieurs années de travail, c'est depuis sa ville de Boulder, Colorado (USA), que Philip R. Zimmermann (surnommé sur Internet "PRZ"), ingénieur informaticien et militant pacifiste à ses heures, réalise la version finale de PGP 1.0 . Alors qu'un projet de loi...Read more
GnuPG Flaw in Encryption Tools Lets Attackers Spoof Anyone's Signature (The Hacker News article)

2018/06/15: Article about the SigSpoof vulnerability which makes it possible for attackers to fake digital signaturesRead more

S/MIME artists: EFAIL email app flaws menace PGP-encrypted chats (The Register article)

2018/05/14: Article describing the EFAIL vulnerabilities concerning OpenPGP and S/MIME encrypted emailRead more

Subscribe to OpenPGP