home.social

#openpgp — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #openpgp, aggregated by home.social.

  1. Good news! The HKP draft has been adopted by the IETF #OpenPGP Working Group, the first official step towards publication as an RFC 🤩

    It is now known as draft-IETF-openpgp-hkp, which replaces draft-gallagher-openpgp-hkp, which itself replaced draft-shaw-openpgp-hkp.

    It has been a long couple of decades 😂

    datatracker.ietf.org/doc/html/

  2. Good news! The HKP draft has been adopted by the IETF #OpenPGP Working Group, the first official step towards publication as an RFC 🤩

    It is now known as draft-IETF-openpgp-hkp, which replaces draft-gallagher-openpgp-hkp, which itself replaced draft-shaw-openpgp-hkp.

    It has been a long couple of decades 😂

    datatracker.ietf.org/doc/html/

  3. Good news! The HKP draft has been adopted by the IETF #OpenPGP Working Group, the first official step towards publication as an RFC 🤩

    It is now known as draft-IETF-openpgp-hkp, which replaces draft-gallagher-openpgp-hkp, which itself replaced draft-shaw-openpgp-hkp.

    It has been a long couple of decades 😂

    datatracker.ietf.org/doc/html/

  4. Good news! The HKP draft has been adopted by the IETF #OpenPGP Working Group, the first official step towards publication as an RFC 🤩

    It is now known as draft-IETF-openpgp-hkp, which replaces draft-gallagher-openpgp-hkp, which itself replaced draft-shaw-openpgp-hkp.

    It has been a long couple of decades 😂

    datatracker.ietf.org/doc/html/

  5. Good news! The HKP draft has been adopted by the IETF #OpenPGP Working Group, the first official step towards publication as an RFC 🤩

    It is now known as draft-IETF-openpgp-hkp, which replaces draft-gallagher-openpgp-hkp, which itself replaced draft-shaw-openpgp-hkp.

    It has been a long couple of decades 😂

    datatracker.ietf.org/doc/html/

  6. Playing around with Sequoia-PGP again. And it just strikes me how easy it makes it. This time I played with sqop instead of sq.

    $ sqop generate-key > key.asc
    $ cat file | sqop encrypt key.pub > file.asc
    $ cat file.asc | sqop decrypt key.asc > file2
    $ sha256sum file file2 | cut -d\ -f1 | uniq -c
    2 34fbc467b8c62...

    Try doing that gpg without needing any $HOME/.gnupg directory. And then try putting that in a script run by some locked-down user via a cron job.

    (I know this should be signed as well, not dug into that yet.)

    #openpgp #pgp #gpg #gnupq #sequoia #sq #sqop #encryption

  7. Playing around with Sequoia-PGP again. And it just strikes me how easy it makes it. This time I played with sqop instead of sq.

    $ sqop generate-key > key.asc
    $ cat file | sqop encrypt key.pub > file.asc
    $ cat file.asc | sqop decrypt key.asc > file2
    $ sha256sum file file2 | cut -d\ -f1 | uniq -c
    2 34fbc467b8c62...

    Try doing that gpg without needing any $HOME/.gnupg directory. And then try putting that in a script run by some locked-down user via a cron job.

    (I know this should be signed as well, not dug into that yet.)

    #openpgp #pgp #gpg #gnupq #sequoia #sq #sqop #encryption

  8. Playing around with Sequoia-PGP again. And it just strikes me how easy it makes it. This time I played with sqop instead of sq.

    $ sqop generate-key > key.asc
    $ cat file | sqop encrypt key.pub > file.asc
    $ cat file.asc | sqop decrypt key.asc > file2
    $ sha256sum file file2 | cut -d\ -f1 | uniq -c
    2 34fbc467b8c62...

    Try doing that gpg without needing any $HOME/.gnupg directory. And then try putting that in a script run by some locked-down user via a cron job.

    (I know this should be signed as well, not dug into that yet.)

    #openpgp #pgp #gpg #gnupq #sequoia #sq #sqop #encryption

  9. Playing around with Sequoia-PGP again. And it just strikes me how easy it makes it. This time I played with sqop instead of sq.

    $ sqop generate-key > key.asc
    $ cat file | sqop encrypt key.pub > file.asc
    $ cat file.asc | sqop decrypt key.asc > file2
    $ sha256sum file file2 | cut -d\ -f1 | uniq -c
    2 34fbc467b8c62...

    Try doing that gpg without needing any $HOME/.gnupg directory. And then try putting that in a script run by some locked-down user via a cron job.

    (I know this should be signed as well, not dug into that yet.)

    #openpgp #pgp #gpg #gnupq #sequoia #sq #sqop #encryption

  10. Playing around with Sequoia-PGP again. And it just strikes me how easy it makes it. This time I played with sqop instead of sq.

    $ sqop generate-key > key.asc
    $ cat file | sqop encrypt key.pub > file.asc
    $ cat file.asc | sqop decrypt key.asc > file2
    $ sha256sum file file2 | cut -d\ -f1 | uniq -c
    2 34fbc467b8c62...

    Try doing that gpg without needing any $HOME/.gnupg directory. And then try putting that in a script run by some locked-down user via a cron job.

    (I know this should be signed as well, not dug into that yet.)

    #openpgp #pgp #gpg #gnupq #sequoia #sq #sqop #encryption

  11. @dazo You will find a lot of bugs or missing features, we are slowly adding them. I have a branch right now about #openpgp support.

  12. @dazo You will find a lot of bugs or missing features, we are slowly adding them. I have a branch right now about #openpgp support.

  13. @dazo You will find a lot of bugs or missing features, we are slowly adding them. I have a branch right now about #openpgp support.

  14. @dazo You will find a lot of bugs or missing features, we are slowly adding them. I have a branch right now about #openpgp support.

  15. @dazo You will find a lot of bugs or missing features, we are slowly adding them. I have a branch right now about #openpgp support.

  16. @dazo I am happy to read these lines. The goal is to make tools/applications which are made for us, easy and usable. #OpenPGP

  17. @dazo I am happy to read these lines. The goal is to make tools/applications which are made for us, easy and usable. #OpenPGP

  18. @dazo I am happy to read these lines. The goal is to make tools/applications which are made for us, easy and usable. #OpenPGP

  19. @dazo I am happy to read these lines. The goal is to make tools/applications which are made for us, easy and usable. #OpenPGP

  20. @dazo I am happy to read these lines. The goal is to make tools/applications which are made for us, easy and usable. #OpenPGP

  21. I've been running #Tumpa CLI for a while on a few selected git repositories, where I use #yubikey for the #PGP key storage.

    github.com/tumpaproject/tumpa-

    Today I have globally replaced gpg2 with tcli and tclig in the git config. It does the job very well and is far less annoying than gpg ever was. The tcli agent is also much more nicely behaving than the gpg-agent.

    Thank you, @kushal for an excellent work on Tumpa!

    And I'm even more impressed that Tumpa even handles multiple Yubikeys plugged in in parallel. It selects the right key for the right identity and the tcli agent even caches the needed passphrase/PIN as expected. This is something which was a complete mess with GnuPG.

    #OpenPGP #gnupg #gpg #opensource #foss #oss

  22. I've been running #Tumpa CLI for a while on a few selected git repositories, where I use #yubikey for the #PGP key storage.

    github.com/tumpaproject/tumpa-

    Today I have globally replaced gpg2 with tcli and tclig in the git config. It does the job very well and is far less annoying than gpg ever was. The tcli agent is also much more nicely behaving than the gpg-agent.

    Thank you, @kushal for an excellent work on Tumpa!

    And I'm even more impressed that Tumpa even handles multiple Yubikeys plugged in in parallel. It selects the right key for the right identity and the tcli agent even caches the needed passphrase/PIN as expected. This is something which was a complete mess with GnuPG.

    #OpenPGP #gnupg #gpg #opensource #foss #oss

  23. I've been running #Tumpa CLI for a while on a few selected git repositories, where I use #yubikey for the #PGP key storage.

    github.com/tumpaproject/tumpa-

    Today I have globally replaced gpg2 with tcli and tclig in the git config. It does the job very well and is far less annoying than gpg ever was. The tcli agent is also much more nicely behaving than the gpg-agent.

    Thank you, @kushal for an excellent work on Tumpa!

    And I'm even more impressed that Tumpa even handles multiple Yubikeys plugged in in parallel. It selects the right key for the right identity and the tcli agent even caches the needed passphrase/PIN as expected. This is something which was a complete mess with GnuPG.

    #OpenPGP #gnupg #gpg #opensource #foss #oss

  24. I've been running #Tumpa CLI for a while on a few selected git repositories, where I use #yubikey for the #PGP key storage.

    github.com/tumpaproject/tumpa-

    Today I have globally replaced gpg2 with tcli and tclig in the git config. It does the job very well and is far less annoying than gpg ever was. The tcli agent is also much more nicely behaving than the gpg-agent.

    Thank you, @kushal for an excellent work on Tumpa!

    And I'm even more impressed that Tumpa even handles multiple Yubikeys plugged in in parallel. It selects the right key for the right identity and the tcli agent even caches the needed passphrase/PIN as expected. This is something which was a complete mess with GnuPG.

    #OpenPGP #gnupg #gpg #opensource #foss #oss

  25. I've been running #Tumpa CLI for a while on a few selected git repositories, where I use #yubikey for the #PGP key storage.

    github.com/tumpaproject/tumpa-

    Today I have globally replaced gpg2 with tcli and tclig in the git config. It does the job very well and is far less annoying than gpg ever was. The tcli agent is also much more nicely behaving than the gpg-agent.

    Thank you, @kushal for an excellent work on Tumpa!

    And I'm even more impressed that Tumpa even handles multiple Yubikeys plugged in in parallel. It selects the right key for the right identity and the tcli agent even caches the needed passphrase/PIN as expected. This is something which was a complete mess with GnuPG.

    #OpenPGP #gnupg #gpg #opensource #foss #oss

  26. @mailbox_org #PGP ist leider zu kompliziert und und zu uneinheitlich umgesetzt. Geht mit #Thunderbird ganz gut, auf Android ist man von einem quasi ungepflegten #OpenKeyChain abhängig, auf iOS von unfreien Apps. Und vom Synchronisieren der Schlüssel über mehrere Geräte hinweg reden wir lieber gar nicht erst.

    Mit #DeltaChat geht das deutlich bequemer, aber das würde ich eher gesondert betrachten.

    #OpenPGP

  27. @mailbox_org #PGP ist leider zu kompliziert und und zu uneinheitlich umgesetzt. Geht mit #Thunderbird ganz gut, auf Android ist man von einem quasi ungepflegten #OpenKeyChain abhängig, auf iOS von unfreien Apps. Und vom Synchronisieren der Schlüssel über mehrere Geräte hinweg reden wir lieber gar nicht erst.

    Mit #DeltaChat geht das deutlich bequemer, aber das würde ich eher gesondert betrachten.

    #OpenPGP

  28. @mailbox_org #PGP ist leider zu kompliziert und und zu uneinheitlich umgesetzt. Geht mit #Thunderbird ganz gut, auf Android ist man von einem quasi ungepflegten #OpenKeyChain abhängig, auf iOS von unfreien Apps. Und vom Synchronisieren der Schlüssel über mehrere Geräte hinweg reden wir lieber gar nicht erst.

    Mit #DeltaChat geht das deutlich bequemer, aber das würde ich eher gesondert betrachten.

    #OpenPGP

  29. @mailbox_org #PGP ist leider zu kompliziert und und zu uneinheitlich umgesetzt. Geht mit #Thunderbird ganz gut, auf Android ist man von einem quasi ungepflegten #OpenKeyChain abhängig, auf iOS von unfreien Apps. Und vom Synchronisieren der Schlüssel über mehrere Geräte hinweg reden wir lieber gar nicht erst.

    Mit #DeltaChat geht das deutlich bequemer, aber das würde ich eher gesondert betrachten.

    #OpenPGP

  30. @mailbox_org #PGP ist leider zu kompliziert und und zu uneinheitlich umgesetzt. Geht mit #Thunderbird ganz gut, auf Android ist man von einem quasi ungepflegten #OpenKeyChain abhängig, auf iOS von unfreien Apps. Und vom Synchronisieren der Schlüssel über mehrere Geräte hinweg reden wir lieber gar nicht erst.

    Mit #DeltaChat geht das deutlich bequemer, aber das würde ich eher gesondert betrachten.

    #OpenPGP

  31. Schreibt mir eine post-quantum Nachricht!
    Und steigt auf Post-Quantum um!

    #gnupg #sequoia #openpgp #aes #kyber #postquantum #cryptography #quantum

    -----BEGIN PGP PUBLIC KEY BLOCK-----

    mEkFagceSxYAAAA/AytlcQHI0TWUyLDWm/9brPLIjkBVEb9mu922wsirsFkfTiSj
    NH/Dytz45QGF8GmXb5gOqNzL44eHOqR6bRwAtBhTY2hudXIgPHNjaG51ckBtYWls
    LmkycD6I6QUTFgoAaSIhBUscQadL0Gfr51DPNfPs7eXIRGo3CAqKRSeG+VL49VKE
    BQJqBx5LGxSAAAAAAAQADm1hbnUyLDIuNSsxLjEyLDIsMgIbAwUJCpfdgAULCQgH
    AgIiAgYVCgkICwIEFgIDAQIeBwIXgAAA6RwBxA6kGXIK9eW+fxfbP61nqTcoucrd
    bYZ2GaA3xWb8aKuewghWZR5UiLMs/mg2BD84pwSmHuFjcpVVAAHIxU6LUwSj+O79
    mrA9L9pFSTYgIhANDVC0pcCTSfEToMeiNfMXnN7OuVqX6HLgc3miXutr3yuZTzoA
    tBtTY2hudXIgPHNjaG51ckBpMnBtYWlsLm9yZz6I6QUTFgoAaSIhBUscQadL0Gfr
    51DPNfPs7eXIRGo3CAqKRSeG+VL49VKEBQJqBx7/GxSAAAAAAAQADm1hbnUyLDIu
    NSsxLjEyLDIsMgIbAwUJCpfdgAULCQgHAgIiAgYVCgkICwIEFgIDAQIeBwIXgAAA
    g4kByOrTzFtDjQTQvJnTcp76u9ylX2b/RSYQRud5AMyF3Py3aKqbLK1/aMiBqR73
    6KPSFgbZ6CpooqpoAAHI55swsGUlNrkHHUQagWnklEWF30DtybTigM2t1di2fXYs
    8KIOFo4zZY8wee6m+HlWyawm5ZgvnzUAtB9TY2hudXIgPHNjaG51ckBob3JzZWZ1
    Y2tlci5vcmc+iOkFExYKAGkiIQVLHEGnS9Bn6+dQzzXz7O3lyERqNwgKikUnhvlS
    +PVShAUCagcfMxsUgAAAAAAEAA5tYW51MiwyLjUrMS4xMiwyLDICGwMFCQqX3YAF
    CwkIBwICIgIGFQoJCAsCBBYCAwECHgcCF4AAAIS8Aci/4qM4a3eIozLg7Zr+wnT8
    LP3Zj4Lexe92uyQF4pvB0NrA89MlVagPsyntdcvUYmiuS+ch/SZWugABxREs7rSN
    zii3nWftV5C6/SBcPGPulP+uY/0sOhqSs+8UvHhmjj8/dfhFGBIcFjEy3CxKKlPG
    m1UAALQiU2NobnVyIDxhbm9uc2NobnVyQHBhcmFub2lkLmVtYWlsPojpBRMWCgBp
    IiEFSxxBp0vQZ+vnUM818+zt5chEajcICopFJ4b5Uvj1UoQFAmoHH6cbFIAAAAAA
    BAAObWFudTIsMi41KzEuMTIsMiwyAhsDBQkKl92ABQsJCAcCAiICBhUKCQgLAgQW
    AgMBAh4HAheAAAB7/AHFEBSwAtD1T5bOW8YkHvcExBvzAGljd96L4Ww/Xjqr33Jv
    upx+JjFd+Dhy9r4azOMRbZlQ69OEjQWAAcd5lDUUeMYd3aQiFR885kJv70SgQUxi
    NOi9RRUmyAcchhSFRw3y021Iq94HbBRlDpCgW4w6xtUAGAC5BmwFagceSwgAAAZi
    AytlbwHAgGFSx/MUSL3W1Vwe14zyB6qODVlbqrkBeDy2yYVRdKrjCeNZZ7cCfBg6
    DJo3oUJCPfZwZbmPul0AAAYgqUYrC3WodTVkr5xXcgaQ8oGfQcNyPZWVVHcMUDF5
    0vd7ujh5idh+mMxkz8QEztWD1BCxB3UzcyKoVnhI+Tiu3veYdAVGhCs+UZGY7gOC
    K1WYM0CG2jNJu8V5aDS8WbjDoqPELPLMTMPOUhUKL2G1TghjjVBKKAxymViqA/rL
    sPFUJKXCV3gif6ZsnfwR8XGcxbJh8tl7HxB20iUxYKtpQljA/EFjOVQeVYJ6+5Wh
    tOYycbC906mHqZrIVYy6ojdju4KVyCzLnmGNcVkY58e7ChC3dMNpaFgARGFZ4YPB
    xOENmYFQr+sqjvAwrweMRza94XJ6wmoZ9aW/QdNhUgpNouxgkFgWPRkUAkVp7pV6
    URd/O5PAOhm141RnALRtdWOvHfKVlqcEPcxuCloQppeinGZhN+ALzeEPT2ucRrej
    o8Ei4BxDfmWkiHmtj5VM9nu54UhJNCdS8WtPJeRu68VmxNXHFmzGoGMuSjd9z8d5
    CeieimOYPxvJ9BunQ9toYVUHAKxIIzAN2ySQwQVlVnupdLQHXpIIxHInM9e7bWcU
    KUY4LJlXqeJZkzDFaNlvepDMu3iR+LpwCGs1ppFxu3h9pFOZx8BmOYGQS1WU65qf
    Phu08oVsmWVoBFZua4c762tzyQuNBLOYtMxPN+g/keE4xRbI5OFeQfh5TtmlEGV0
    pfGITMl2YZIQpAorxuAHutu/kad+lJEiHLGen9McD+TO0mfOI9iELOmfXJgOFbiG
    LHByj2ORozZzkTGqEmZYxLoO1bE4oMVKBJgGDTh66IJoVAeLSZed0ac39PILmnQi
    e9Bkwoe26Je49EVfVfgjovwImUuPFwG99phBfGQO8jIywcKNQCfOiwO82LOok/mT
    zTOcT3SASsWU6uypSTIRJiYdMAVdfXdIUeZ0i4h1JbcJCHgU/Qt+7RK+YCFPCPAE
    LyOuzoNjBMy9xXkELZyUHmRd0AuTpNA2VFsueeCeqqqFc3MTJ5lVbYSZVMrAZIA2
    LjEXflp9Hrk5KIC8uJMlQXJ8+fQTPodBibKts2iBkCsBlKKVHACm1jojKYd7oBAh
    RJawGRykj6mYPsHAWpa2BrBoWAmKz8rAjyoTaBwSOwTOMCEIGKiRygYTYpBRpHmU
    ZksP6UqNhDsx5zYeZlW853YXmXY5DIPDpmQFGYqUSRdqHlWHlkiGxpWFtWRMb4Ml
    uOhrjshueXUyy5yeFxOZnpVCA8nNe7t1nWtfIEh7JMelBkIGcFo3SDRWKFa/8pAg
    rGNvdhw5gzCNn2k/KQmZtyiBl1QqJ2DFZWoYeLtrwBBMiqcyuYbMp0EBnBB5aroM
    7FsRw+EKpaKzACmvuqeULze8gzUg8Zqjzyof9BZW8YiLUuw9QbKl9dfGzVwPOgW/
    IEIl+vZJScA60nOO/XFJ+TjJtYq2flLA98EUCAwtPCJYBqk8c4ghd6ItiXq8EoAk
    Sgo9bCEQI4ZFdCM5GZkT6EZBCxrP1IFFUVebOnUiQ9wh95VL+5Zk0pMu+4GYVSma
    z9oSY4tAYaiOH6poTKwhYbWf3tInA6AZhHagZpcEA9XOzpgTKBQjNKOspPpYwom7
    E6GHTEyI3EzF+oYF/ncqzdtP9kYXxxGIfxkzNrjAfDtwrowXLuRT8WWj7xogTVOe
    bDC71lamIaW+RuxqVgZndryctRqsZthfG1xswASboxof+Yu3gOFJh3BEy2Ipbchy
    rgSBLckIq7atMnnINayaq3miFrZby6V1iSueolS/IBx0N5VYm9x2IKXEohkjFOFH
    jqR3DKOS14erICCaIOjIoJPPuOodkMSXahComsqxamiJWho6qDEQQLlBS1k6bTyy
    bCeESqxU/whiSLJsh9doYvQA5DoG2Cat2fOwZGs2SwEjJtVDN9l1OmuzwUcoUZUd
    OdmffsKxDvuVQvzMtnc3myS23nRDYHK5g+xpx6F3jAKvp1aFzCW4BBN8UqsDWtWu
    nNGGHdlSj+pUg0nNjkANlrplVecqdPAhm5i8cINe+aJZyfgEOcp5/6m5drINylNq
    pMNOEdy+ImkvFmc11iKKmmcZuziOFUHu6cGDNTEV/y7kmPdXmJh3gV8LnwihNWD8
    ytKIzgUYFgoATiIhBUscQadL0Gfr51DPNfPs7eXIRGo3CAqKRSeG+VL49VKEBQJq
    Bx5LGxSAAAAAAAQADm1hbnUyLDIuNSsxLjEyLDIsMgIbDAUJCpfdgAAAsQgByOwk
    vYE/vYDHeXRWG7UPBUxCxAykZwOz2jqFBSD8e/riTzTx85nVkUIRXb4mmBhp73DT
    HLbhgOOwgAHI5TS2rCxCNqr/4u8wmf2ppt5mf68E/hwFODvRQKdIawFyu9hS8rGa
    ZInzyeVq1UkMl+EIy/jXEC4A
    =JLo6
    -----END PGP PUBLIC KEY BLOCK-----

  32. Schreibt mir eine post-quantum Nachricht!
    Und steigt auf Post-Quantum um!

    #gnupg #sequoia #openpgp #aes #kyber #postquantum #cryptography #quantum

    -----BEGIN PGP PUBLIC KEY BLOCK-----

    mEkFagceSxYAAAA/AytlcQHI0TWUyLDWm/9brPLIjkBVEb9mu922wsirsFkfTiSj
    NH/Dytz45QGF8GmXb5gOqNzL44eHOqR6bRwAtBhTY2hudXIgPHNjaG51ckBtYWls
    LmkycD6I6QUTFgoAaSIhBUscQadL0Gfr51DPNfPs7eXIRGo3CAqKRSeG+VL49VKE
    BQJqBx5LGxSAAAAAAAQADm1hbnUyLDIuNSsxLjEyLDIsMgIbAwUJCpfdgAULCQgH
    AgIiAgYVCgkICwIEFgIDAQIeBwIXgAAA6RwBxA6kGXIK9eW+fxfbP61nqTcoucrd
    bYZ2GaA3xWb8aKuewghWZR5UiLMs/mg2BD84pwSmHuFjcpVVAAHIxU6LUwSj+O79
    mrA9L9pFSTYgIhANDVC0pcCTSfEToMeiNfMXnN7OuVqX6HLgc3miXutr3yuZTzoA
    tBtTY2hudXIgPHNjaG51ckBpMnBtYWlsLm9yZz6I6QUTFgoAaSIhBUscQadL0Gfr
    51DPNfPs7eXIRGo3CAqKRSeG+VL49VKEBQJqBx7/GxSAAAAAAAQADm1hbnUyLDIu
    NSsxLjEyLDIsMgIbAwUJCpfdgAULCQgHAgIiAgYVCgkICwIEFgIDAQIeBwIXgAAA
    g4kByOrTzFtDjQTQvJnTcp76u9ylX2b/RSYQRud5AMyF3Py3aKqbLK1/aMiBqR73
    6KPSFgbZ6CpooqpoAAHI55swsGUlNrkHHUQagWnklEWF30DtybTigM2t1di2fXYs
    8KIOFo4zZY8wee6m+HlWyawm5ZgvnzUAtB9TY2hudXIgPHNjaG51ckBob3JzZWZ1
    Y2tlci5vcmc+iOkFExYKAGkiIQVLHEGnS9Bn6+dQzzXz7O3lyERqNwgKikUnhvlS
    +PVShAUCagcfMxsUgAAAAAAEAA5tYW51MiwyLjUrMS4xMiwyLDICGwMFCQqX3YAF
    CwkIBwICIgIGFQoJCAsCBBYCAwECHgcCF4AAAIS8Aci/4qM4a3eIozLg7Zr+wnT8
    LP3Zj4Lexe92uyQF4pvB0NrA89MlVagPsyntdcvUYmiuS+ch/SZWugABxREs7rSN
    zii3nWftV5C6/SBcPGPulP+uY/0sOhqSs+8UvHhmjj8/dfhFGBIcFjEy3CxKKlPG
    m1UAALQiU2NobnVyIDxhbm9uc2NobnVyQHBhcmFub2lkLmVtYWlsPojpBRMWCgBp
    IiEFSxxBp0vQZ+vnUM818+zt5chEajcICopFJ4b5Uvj1UoQFAmoHH6cbFIAAAAAA
    BAAObWFudTIsMi41KzEuMTIsMiwyAhsDBQkKl92ABQsJCAcCAiICBhUKCQgLAgQW
    AgMBAh4HAheAAAB7/AHFEBSwAtD1T5bOW8YkHvcExBvzAGljd96L4Ww/Xjqr33Jv
    upx+JjFd+Dhy9r4azOMRbZlQ69OEjQWAAcd5lDUUeMYd3aQiFR885kJv70SgQUxi
    NOi9RRUmyAcchhSFRw3y021Iq94HbBRlDpCgW4w6xtUAGAC5BmwFagceSwgAAAZi
    AytlbwHAgGFSx/MUSL3W1Vwe14zyB6qODVlbqrkBeDy2yYVRdKrjCeNZZ7cCfBg6
    DJo3oUJCPfZwZbmPul0AAAYgqUYrC3WodTVkr5xXcgaQ8oGfQcNyPZWVVHcMUDF5
    0vd7ujh5idh+mMxkz8QEztWD1BCxB3UzcyKoVnhI+Tiu3veYdAVGhCs+UZGY7gOC
    K1WYM0CG2jNJu8V5aDS8WbjDoqPELPLMTMPOUhUKL2G1TghjjVBKKAxymViqA/rL
    sPFUJKXCV3gif6ZsnfwR8XGcxbJh8tl7HxB20iUxYKtpQljA/EFjOVQeVYJ6+5Wh
    tOYycbC906mHqZrIVYy6ojdju4KVyCzLnmGNcVkY58e7ChC3dMNpaFgARGFZ4YPB
    xOENmYFQr+sqjvAwrweMRza94XJ6wmoZ9aW/QdNhUgpNouxgkFgWPRkUAkVp7pV6
    URd/O5PAOhm141RnALRtdWOvHfKVlqcEPcxuCloQppeinGZhN+ALzeEPT2ucRrej
    o8Ei4BxDfmWkiHmtj5VM9nu54UhJNCdS8WtPJeRu68VmxNXHFmzGoGMuSjd9z8d5
    CeieimOYPxvJ9BunQ9toYVUHAKxIIzAN2ySQwQVlVnupdLQHXpIIxHInM9e7bWcU
    KUY4LJlXqeJZkzDFaNlvepDMu3iR+LpwCGs1ppFxu3h9pFOZx8BmOYGQS1WU65qf
    Phu08oVsmWVoBFZua4c762tzyQuNBLOYtMxPN+g/keE4xRbI5OFeQfh5TtmlEGV0
    pfGITMl2YZIQpAorxuAHutu/kad+lJEiHLGen9McD+TO0mfOI9iELOmfXJgOFbiG
    LHByj2ORozZzkTGqEmZYxLoO1bE4oMVKBJgGDTh66IJoVAeLSZed0ac39PILmnQi
    e9Bkwoe26Je49EVfVfgjovwImUuPFwG99phBfGQO8jIywcKNQCfOiwO82LOok/mT
    zTOcT3SASsWU6uypSTIRJiYdMAVdfXdIUeZ0i4h1JbcJCHgU/Qt+7RK+YCFPCPAE
    LyOuzoNjBMy9xXkELZyUHmRd0AuTpNA2VFsueeCeqqqFc3MTJ5lVbYSZVMrAZIA2
    LjEXflp9Hrk5KIC8uJMlQXJ8+fQTPodBibKts2iBkCsBlKKVHACm1jojKYd7oBAh
    RJawGRykj6mYPsHAWpa2BrBoWAmKz8rAjyoTaBwSOwTOMCEIGKiRygYTYpBRpHmU
    ZksP6UqNhDsx5zYeZlW853YXmXY5DIPDpmQFGYqUSRdqHlWHlkiGxpWFtWRMb4Ml
    uOhrjshueXUyy5yeFxOZnpVCA8nNe7t1nWtfIEh7JMelBkIGcFo3SDRWKFa/8pAg
    rGNvdhw5gzCNn2k/KQmZtyiBl1QqJ2DFZWoYeLtrwBBMiqcyuYbMp0EBnBB5aroM
    7FsRw+EKpaKzACmvuqeULze8gzUg8Zqjzyof9BZW8YiLUuw9QbKl9dfGzVwPOgW/
    IEIl+vZJScA60nOO/XFJ+TjJtYq2flLA98EUCAwtPCJYBqk8c4ghd6ItiXq8EoAk
    Sgo9bCEQI4ZFdCM5GZkT6EZBCxrP1IFFUVebOnUiQ9wh95VL+5Zk0pMu+4GYVSma
    z9oSY4tAYaiOH6poTKwhYbWf3tInA6AZhHagZpcEA9XOzpgTKBQjNKOspPpYwom7
    E6GHTEyI3EzF+oYF/ncqzdtP9kYXxxGIfxkzNrjAfDtwrowXLuRT8WWj7xogTVOe
    bDC71lamIaW+RuxqVgZndryctRqsZthfG1xswASboxof+Yu3gOFJh3BEy2Ipbchy
    rgSBLckIq7atMnnINayaq3miFrZby6V1iSueolS/IBx0N5VYm9x2IKXEohkjFOFH
    jqR3DKOS14erICCaIOjIoJPPuOodkMSXahComsqxamiJWho6qDEQQLlBS1k6bTyy
    bCeESqxU/whiSLJsh9doYvQA5DoG2Cat2fOwZGs2SwEjJtVDN9l1OmuzwUcoUZUd
    OdmffsKxDvuVQvzMtnc3myS23nRDYHK5g+xpx6F3jAKvp1aFzCW4BBN8UqsDWtWu
    nNGGHdlSj+pUg0nNjkANlrplVecqdPAhm5i8cINe+aJZyfgEOcp5/6m5drINylNq
    pMNOEdy+ImkvFmc11iKKmmcZuziOFUHu6cGDNTEV/y7kmPdXmJh3gV8LnwihNWD8
    ytKIzgUYFgoATiIhBUscQadL0Gfr51DPNfPs7eXIRGo3CAqKRSeG+VL49VKEBQJq
    Bx5LGxSAAAAAAAQADm1hbnUyLDIuNSsxLjEyLDIsMgIbDAUJCpfdgAAAsQgByOwk
    vYE/vYDHeXRWG7UPBUxCxAykZwOz2jqFBSD8e/riTzTx85nVkUIRXb4mmBhp73DT
    HLbhgOOwgAHI5TS2rCxCNqr/4u8wmf2ppt5mf68E/hwFODvRQKdIawFyu9hS8rGa
    ZInzyeVq1UkMl+EIy/jXEC4A
    =JLo6
    -----END PGP PUBLIC KEY BLOCK-----

  33. ℹ️ Kleines Update zum Projekt #sichereMails

    Tatsächlich gibt es inzwischen erste Kontakte, die teils sogar automatisiert unser #PGP erkannt haben und es jetzt auch nutzen.

    Die häufigste Rückmeldung ist jedoch, dass der "komische Anhang" in unseren Mails nicht geöffnet werden kann.
    Die Ironie dabei ist, dass diese Frage auch von Kontakten kam, die #PGP offiziell nutzen ...

    Und bei euch so?

    #OpenPGP #GPG4win #E2EE #EMClient #Thunderbird #Outlook #DID #DUT #CyberSecurity

  34. ℹ️ Kleines Update zum Projekt #sichereMails

    Tatsächlich gibt es inzwischen erste Kontakte, die teils sogar automatisiert unser #PGP erkannt haben und es jetzt auch nutzen.

    Die häufigste Rückmeldung ist jedoch, dass der "komische Anhang" in unseren Mails nicht geöffnet werden kann.
    Die Ironie dabei ist, dass diese Frage auch von Kontakten kam, die #PGP offiziell nutzen ...

    Und bei euch so?

    #OpenPGP #GPG4win #E2EE #EMClient #Thunderbird #Outlook #DID #DUT #CyberSecurity

  35. ℹ️ Kleines Update zum Projekt #sichereMails

    Tatsächlich gibt es inzwischen erste Kontakte, die teils sogar automatisiert unser #PGP erkannt haben und es jetzt auch nutzen.

    Die häufigste Rückmeldung ist jedoch, dass der "komische Anhang" in unseren Mails nicht geöffnet werden kann.
    Die Ironie dabei ist, dass diese Frage auch von Kontakten kam, die #PGP offiziell nutzen ...

    Und bei euch so?

    #OpenPGP #GPG4win #E2EE #EMClient #Thunderbird #Outlook #DID #DUT #CyberSecurity

  36. ℹ️ Kleines Update zum Projekt #sichereMails

    Tatsächlich gibt es inzwischen erste Kontakte, die teils sogar automatisiert unser #PGP erkannt haben und es jetzt auch nutzen.

    Die häufigste Rückmeldung ist jedoch, dass der "komische Anhang" in unseren Mails nicht geöffnet werden kann.
    Die Ironie dabei ist, dass diese Frage auch von Kontakten kam, die #PGP offiziell nutzen ...

    Und bei euch so?

    #OpenPGP #GPG4win #E2EE #EMClient #Thunderbird #Outlook #DID #DUT #CyberSecurity

  37. ℹ️ Kleines Update zum Projekt #sichereMails

    Tatsächlich gibt es inzwischen erste Kontakte, die teils sogar automatisiert unser #PGP erkannt haben und es jetzt auch nutzen.

    Die häufigste Rückmeldung ist jedoch, dass der "komische Anhang" in unseren Mails nicht geöffnet werden kann.
    Die Ironie dabei ist, dass diese Frage auch von Kontakten kam, die #PGP offiziell nutzen ...

    Und bei euch so?

    #OpenPGP #GPG4win #E2EE #EMClient #Thunderbird #Outlook #DID #DUT #CyberSecurity

  38. @liw Not entirely. My scenario involves using the decryptor in a pipe, both for the data coming in and the data going out. A signature over the entire file of course can't be verified until the entire file's processed, so at best it could withhold just the last block of data. AFAICT, #AEAD/#HMAC can apply to each block, and thus can prevent even one byte of un-authenticated data from being output. So, I think #age can promise to never emit unauthenticated data, but #OpenPGP can't.

  39. @liw Not entirely. My scenario involves using the decryptor in a pipe, both for the data coming in and the data going out. A signature over the entire file of course can't be verified until the entire file's processed, so at best it could withhold just the last block of data. AFAICT, #AEAD/#HMAC can apply to each block, and thus can prevent even one byte of un-authenticated data from being output. So, I think #age can promise to never emit unauthenticated data, but #OpenPGP can't.

  40. Ho provato per settimane le YubiKey 5 NFC e 5C NFC, ecco com’è andata

    Ho provato le YubiKey 5 NFC e 5C NFC su Linux, Windows e Android: autenticazione FIDO2, passkey, codici TOTP, firma dei commit con OpenPGP, Yubico Authenticator e i limiti pratici dell’NFC.

    yoota.it/ho-provato-per-settim

  41. Ho provato per settimane le YubiKey 5 NFC e 5C NFC, ecco com’è andata

    Ho provato le YubiKey 5 NFC e 5C NFC su Linux, Windows e Android: autenticazione FIDO2, passkey, codici TOTP, firma dei commit con OpenPGP, Yubico Authenticator e i limiti pratici dell’NFC.

    yoota.it/ho-provato-per-settim

  42. @GnuPG @todd_a_jacobs Using #LTFS to store #encrypteddata outside of hyper scaler environments without the dedicated #KMS components expensive tape libraries use to enable #LTO9 drives' built-in, hardware #AES256GCM support is an area the institute is evaluating, and thinking about how #GPG might fit in has been a facet of our research process.

    All recent generations of #LTO drives support strong, on-the-fly, hardware-accelerated encryption on the drives themselves. Sadly, it's essentially useless in the standalone drives sold to individuals, the #SOHO market, or to other non-enterprise customers because of the high cost of the tape library hardware required to activate it.

    In some ways, the situation is much like the early Intel 386 computers that shipped with missing or disabled math coprocessors even when it stopped being a cost issue. In part, that was a strategic market segmentation decision, and the institute currently believes the lack of accessible LTFS encryption for all encryption-capable drives is no different.

    Even though #GnuPG is usually thought of as primarily an email tool, it's actually an important "Swiss Army knife" for a variety of #infosec use cases. It's also on a tragically short list of #OpenPGP and telatrd #cryptography tools that remains fully #opensource.

    We're putting this topic on our agenda for further exploration and discussion. Meanwhile, these community conversations and the viewpoints of respected tool developers is an invaluable resource to everyone.

  43. Replacing my 2019 Yubico YubiKey 5 NFC and 5Ci with YubiKey 5C NFC variants. This time with a custom #YubiStyle

    The Double Rainbow variant will be my daily driver. The Red key will serve as the backup key in case the rainbow variant breaks.

    Now migrating all services from my old keys to the new keys. Lucky for me, I have documented all uses of my old keys.

    #security #yubikey #otp #openpgp #fido

  44. Post-quantum defaults and GnuPG

    @andrewg email is a very insightful overview of where the standards, implementations, and openness of the community.

    After years of using OpenPGP, the PQC discussions are a good opportunity to rethink what we should prepare for next and especially which community we should work with.

    #pgp #librepgp #openpgp #opensource
    #community #cybersecurity

    🔗 lists.gnupg.org/pipermail/gnup

  45. All who use GnuPG gpg, and especially for signing git work ... give Tumpa-cli a real run and report back to @kushal ! This project works very well already, and is just a few weeks old.

    github.com/tumpaproject/tumpa-

    I did my install using cargo build --release which gets you started super easy.

    Now we just need to convince Kushal to move to a better hosting place! What do you think, @Codeberg 😁 😉

    #PGP #OpenPGP #GnuPG #gpg #git #Rust