Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It's less about the algorithm, but more how gpg/pgp is constructed/used. No forward secrecy, leaks info, bad text authentication, and other. Those things maybe can be fixed, but they're not.

https://latacora.micro.blog/2019/07/16/the-pgp-problem.html

Edit: an alternative for file encryption is age, fast simple and secure. Signing is signify.



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: