Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
mstdn.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A general-purpose Mastodon server with a 500 character limit. All languages are welcome.

Administered by:

Server stats:

14K
active users

mstdn.social: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.8

#openpgp

12 posts9 participants0 posts today
Public
Delta Chat

Comparing #XMPP against #email protocols is too limited. What sets #deltachat apart is *vertical integration* and being driven by UI/UX considerations. Cross-platform Apps and Bots use the Rust core library which connects with #chatmail relays and classic email servers based on a higher level API -- abstracting over SMTP, MIME, #OpenPGP etc. See chatmail.at

#webxdc apps in turn use an even higher level stable API abstracting over email/xmpp/... see webxdc.org/docs/

chatmail.atChatmailChatmail provides FOSS infrastructure for interoperable, secure, speedy and reliable end-to-end encrypted messaging. Check out clients as Arcane Chat, Bots or Delta Chat today!
Public
jbz

🔐 Post-quantum cryptography

「 Defense against potential future attacks with quantum computers is of particular interest for encryption. In particular when it is relevant if an attacker might store encrypted communication and decrypt it in the future. Defending against such an attack requires deployment of countermeasures well before the attack becomes practical 」

openpgp.foo/posts/2025-05-pqc/

OpenPGP.foo · Post-quantum cryptographyPost-quantum cryptography (PQC) # Post-quantum cryptography (PQC) is a branch of cryptography that develops algorithms which are thought to be secure against attacks using hypothetical quantum computers (which don’t exist right now, but may be developed in the future). Development and deployment of such algorithms defends against potential future attacks (in case relevant quantum computers materialize). Defense against potential future attacks with quantum computers is of particular interest for encryption. In particular when it is relevant if an attacker might store encrypted communication and decrypt it in the future. Defending against such an attack requires deployment of countermeasures well before the attack becomes practical.
#pqc#openpgp#cybersecurity
Public
Stefan
Kann ich die Zuordnung von privaten Schlüssel und Karte löschen bzw. irgendwie explizit erzwingen?

Folgendes Problem,...

Meine Schlüssel ist einem anderen Nitrokey zugeordnet. Normal habe ich diese immer mit gpg --edit-card und dann einem verify hinbekommen. Danach war der Schlüssel der aktuellen Karte zugeordnet.

Aus irgendeinem Grund ist dies aktuell auf meinem Debian stable System nicht möglich. Das System erkennt den Nitrokey. Bei einem ssh / --sign gibt es immer die Meldung, ich soll die Karte mit Nummer XY einlegen - mit diesem Nitrokey geht es dann auch. Ich möchte aber den anderen.

#gnupg #gpg #openpgp #nitrokey #debian
Public
Heiko

I just released version 0.1.2 of rsop-oct, a stateless #OpenPGP ("SOP") CLI tool for use with OpenPGP card hardware devices:

crates.io/crates/rsop-oct/

Like its sibling project #rsop, rsop-oct is based on @rpgp

This update makes integration with crates.io/crates/openpgp-card- optional.

rsop-oct can now implicitly use persisted PINs via openpgp-card-state, or explicitly provided ones via the standard SOP CLI parameter '--with-key-password'.

For more on #SOP, see datatracker.ietf.org/doc/draft

crates.iocrates.io: Rust Package Registry
#PGP#GnuPG
Public
rPGP

New release: #rPGP version 0.16.0 🧰🔐✨

github.com/rpgp/rpgp/releases/

#OpenPGP implemented in pure #Rust, permissively licensed

This release features streaming message support: Now rPGP can process arbitrarily large messages, with modest memory requirements.

It adds experimental support for the upcoming OpenPGP #PQC IETF standard datatracker.ietf.org/doc/html/

This release also brings various improvements for key generation, support for X448/Ed448, and many minor fixes.

⛰️ Features Update to draft-ietf-openpgp-pqc-10 (#565) - (01a9643) 🚜 Refactor Cleanup the interface of crypto::*::SecretKey - (45e1ea8)
GitHubRelease v0.16.0 - Stream the world & PQC · rpgp/rpgp⛰️ Features Update to draft-ietf-openpgp-pqc-10 (#565) - (01a9643) 🚜 Refactor Cleanup the interface of crypto::*::SecretKey - (45e1ea8)
Public *
Delta Chat

our friends over at @rpgp just published a monster milestone, humbly tagged 0.16 😍 with

- streaming decryption and encryption

- post-quantum-cryptography

- API streamlining.

#rPGP is a full Rust implementation of #openpgp which counts among the fastest and most compliant implementations today, and includes security audits. Note: #deltachat uses a restricted subset of OpenPGP, and follows best practices (eg using the same ed25519 keys implementation as #signal) github.com/rpgp/rpgp/

OpenPGP implemented in pure Rust, permissively licensed - rpgp/rpgp
GitHubGitHub - rpgp/rpgp: OpenPGP implemented in pure Rust, permissively licensedOpenPGP implemented in pure Rust, permissively licensed - rpgp/rpgp
Public
9x0rg

Don't use PGP with emails.

> Security researchers are sounding the alarm over a fresh flaw in the JavaScript implementation of OpenPGP (OpenPGP.js) that allows both signed and encrypted messages to be spoofed.

> Discovered by Codean Labs' Edoardo Geraci and Thomas Rinsma, the vulnerability essentially undermines the core purpose of using public key cryptography to secure communications.

**OpenPGP.js bug enables encrypted message spoofing**

theregister.com/2025/05/20/ope

The Register · Freshly discovered bug in OpenPGP.js undermines whole point of encrypted commsBy Connor Jones
#OpenPGP#PGP#Encryption
ExploreLive feeds
About