aldolat + pgp   38

Not So Pretty: What You Need to Know About E-Fail and the PGP Flaw | Electronic Frontier Foundation
Don’t panic! But you should stop using PGP for encrypted email and switch to a different secure communications method for now.
PGP  GnuPG  OpenPGP  bug  attack  exploit  email  security  privacy 
may 2018 by aldolat
EFAIL describes vulnerabilities in the end-to-end encryption technologies OpenPGP and S/MIME that leak the plaintext of encrypted emails.
PGP  GnuPG  OpenPGP  bug  attack  exploit  email  security  privacy 
may 2018 by aldolat
Mail criptate, c'è un bug enorme che permette di leggere i messaggi. Anche quelli già spediti
Un ricercatore europeo ha trovato un enorme bug nel sistema PGP e S/MIME utilizzato per codificare le email end to end: non solo è possibile leggere il testo delle mail crittografate in chiaro, ma si può risalire anche ai vecchi messaggi.
PGP  GnuPG  OpenPGP  bug  attack  exploit  email  security  privacy 
may 2018 by aldolat
Expirybot makes it easier to use PGP
Journalists, human rights defenders, lawyers, developers and proactive citizens rely on open source cryptography to keep us all safe.
OpenPGP  GnuPG  PGP  security 
may 2018 by aldolat
CryptoParty is a decentralized movement with events happening all over the world. The goal is to pass on knowledge about protecting yourself in the digital space. This can include encrypted communication, preventing being tracked while browsing the web, and general security advice regarding computers and smartphones.
security  privacy  GnuPG  gpg  PGP  cryptography 
november 2017 by aldolat
Op-ed: Why I’m not giving up on PGP | Ars Technica
Every once in a while, a prominent member of the security community publishes an article about how horrible OpenPGP is. Matthew Green wrote one in 2014 and Moxie Marlinspike wrote one in 2015. The most recent was written by Filippo Valsorda, here on the pages of Ars Technica, which Matthew Green says "sums up the main reason I think PGP is so bad and dangerous."
In this article I want to respond to the points that Filippo raises. In short, Filippo is right about some of the details, but wrong about the big picture. For the record, I work on GnuPG, the most popular OpenPGP implementation.
security  OpenPGP  PGP 
january 2017 by aldolat
Op-ed: I’m throwing in the towel on PGP, and I work in security | Ars Technica
After years of wrestling with GnuPG with varying levels of enthusiasm, I came to the conclusion that it's just not worth it, and I'm giving up—at least on the concept of long-term PGP keys. This editorial is not about the gpg tool itself, or about tools at all. Many others have already written about that. It's about the long-term PGP key model—be it secured by Web of Trust, fingerprints or Trust on First Use—and how it failed me.
security  OpenPGP  PGP 
january 2017 by aldolat
Giving Up on PGP - Schneier on Security
Filippo Valsorda wrote an excellent essay on why he's giving up on PGP.
security  OpenPGP  PGP 
january 2017 by aldolat
PGP and SSH keys on a Yubikey NEO « Eric Severance
With the new year, I decided it was time to make a new PGP key. I wanted to keep this key on a Yubikey NEO and NEO-n for every day use. By using hardware tokens like the Yubikey, the private PGP keys never need to be stored on my computer. The PGP keys on the Yubikey can also be used for SSH public-key authentication.
encryption  pgp  YubiKey  gpg  gnupg  letture 
june 2015 by aldolat
How to Use Gnu Privacy Guard - Community Ubuntu Documentation
GnuPG uses public-key cryptography so that users may communicate securely. In a public-key system, each user has a pair of keys consisting of a private key and a public key. A user's private key is kept secret; it need never be revealed. The public key may be given to anyone with whom the user wants to communicate.
gpg  gnupg  pgp  security  encryption  howto 
october 2010 by aldolat
How Does Bruce Schneier Protect His Laptop Data? With His Fists -- and PGP
Perhaps encryption isn't so easy after all, and some people could use a little primer. This is how I protect my laptop.
security  privacy  pgp  tips  schneier 
september 2008 by aldolat

Copy this bookmark: