efail -> improvements

Bernhard Reiter bernhard at intevation.de
Tue May 15 08:45:03 CEST 2018

On an email just send to gnupg-devel@
I'm suggesting to change GnuPG to 

> to not display contents which did not have integrity
> protection by either:
>  a) MDC
>  b) AEAD
>  c) a signature over the whole contents from someone where it has been
>     encrypted to (if this is feasable to detect).

(As a supportive argument over suggestions by Werner and others.
Just put here for reference as this is the development list.)


www.intevation.de/~bernhard   +49 541 33 508 3-3
Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998
Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20180515/4a048ed0/attachment.sig>

More information about the Gnupg-devel mailing list