Thoughts on GnuPG and automation

Kristian Fiskerstrand kristian.fiskerstrand at
Fri Feb 27 13:04:10 CET 2015

Hash: SHA512

On 02/27/2015 12:02 PM, Hans-Christoph Steiner wrote:
> Bjarni Runar Einarsson wrote:
>> Hello GnuPG users!


> With all the recent attention to GnuPG and Werner's work, I have
> begun to think about things differently.  GnuPG has an amazing
> security track record. It has had few serious security bugs,
> nothing even close to heartbleed that I know of, and yet it is core
> to providing security to GNU/Linux distros, as well as protecting
> people like Laura Poitras and Edward Snowden.  So instead of
> complaining about the difficulties, I now try to think about
> whether such difficulties might actually be related to what makes
> GnuPG so solid.  I think anyone interested in providing usable
> security needs to think hard about this. Sure we can make things
> easier to use, but it is a very slippery slope towards reducing
> security.

Hear hear, you can't have proper security without proper operational
security surrounding it, and that require an educated population to
use it.

Security is not something that can be solved technically (alone). What
we would need are better ways to educate people, and get it into
school earlier, like the algorithm classes in kindergarden in britain
teching kids algos through games (i.e physical games)

- -- 
- ----------------------------
Kristian Fiskerstrand
Twitter: @krifisk
- ----------------------------
Public OpenPGP key 0xE3EDFAE3 at hkp://
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
- ----------------------------
Manus manum lavat
One hand washes the other


More information about the Gnupg-users mailing list