Integrate pinentry-mac into pinentry

Werner Koch wk at gnupg.org
Wed Feb 25 16:49:16 CET 2015


On Wed, 25 Feb 2015 15:28, hans at guardianproject.info said:

> UI, which generally translated into worse security.  A malicious app could
> just make a custom pinentry app that looks however it wants, and basically

Right.  However, there are ways to avoid that.  The SAK feature on older
systems or a visual effect only controllable by an OS trusted process is
what pinentry would need.  And of course there is the idea of using
gpg-agent and thus pinentry on a separate device.

Another reasons against adding arbitrary UI features to Pinentry is that
as soon as you do it more features will be requested and the former
sharp boundaries between gpg-agent/pinentry will become fuzzy.  Such
overloading has often been the cause for opening new attack paths to a
system.  Pinentry was once decide to do just one thing and that is it.



Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.




More information about the Gnupg-devel mailing list