2018/05/14: Article on the disclosed vulnerabilities in OpenPGP and S/MIMERead more
2018/05: Reaction to the Prontomail article "No, PGP is not broken, not even with the Efail vulnerabilities" (artifact available) on Hacker News forum : https://cva.unifr.ch/content/no-...Read more
2018/05/22: Article analyzing and answering questions linked to the EFAIL vulnerabilitiesRead more
2019/03/25: Public vulnerability report in the SwissPost e-voting system. Explanation and proof of the vulnerability. This is the second report showing vulnerabilities in this e-voting system by the security researchers team of Sarah Jamie Lewis, Vanessa Teague, and Olivier Pereira.
...Read more
2018(05/14: Article criticizing the handling of the EFAIL vulnerabilities disclosureRead more
2019/03/25: Swiss Post article reacting to the second vulnerability report in its e-voting system. Report: https://cva.unifr.ch/content/how-not-prove-your-election-outcome-...Read more
2019/04/05: The Daily Swig article reviewing the controversies surrounding the Swiss Post public intrusion test for their e-voting systemRead more
EFAIL Usenix paper, released (in a draft version) on may 14, 2018 due to embargo break. It describes the EFAIL attacks (technique: malleability gadgets) to reveal plaintext of emails encrypted with S/MIME and OpenPGP.Read more