Techly NewsGet the app

Get the latest tech news

RFC 9580: OpenPGP


This document specifies the message formats used in OpenPGP. OpenPGP provides encryption with public key or symmetric cryptographic algorithms, digital signatures, compression, and key management. This document is maintained in order to publish all necessary information needed to develop interoperable applications based on the OpenPGP format. It is not a step-by-step cookbook for writing an application. It describes only the format and methods needed to read, check, generate, and write conforming packets crossing any network. It does not deal with storage and implementation questions. It does, however, discuss implementation issues necessary to avoid security flaws. This document obsoletes RFCs 4880 ("OpenPGP Message Format"), 5581 ("The Camellia Cipher in OpenPGP"), and 6637 ("Elliptic Curve Cryptography (ECC) in OpenPGP").

The S2K usage octet is then followed immediately by a set of fields that describe how to convert a passphrase to a symmetric key that can unlock the secret material, plus other parameters relevant to the type of encryption used. In winter 2005, Serge Mister and Robert Zuccherato from Entrust released a paper describing a way that the "quick check" in v1 SEIPD and SED packets can be used as an oracle to decrypt two octets of every cipher block [ MZ05]. [KOPENPGP] Bruseghini, L., Paterson, K. G., and D. Huigens, "Victory by KO: Attacking OpenPGP Using Key Overwriting", Proceedings of the ACM SIGSAC Conference on Computer and Communications Security, pp.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of RFC

RFC

Related news:

News photo

RFC: 64-Bit Sequence Numbers for TCP

News photo

RFC 9180: Hybrid Public Key Encryption (2022)

News photo

We have reached OpenBSD of Theseus

« Linux from Scratch
The mullet is alive and well in AFL »