Automated digital signing of OS artifacts

https://lists.archlinux.org/archives/list/arch-dev-public@lists.archlinux.org/thread/BOMYF4UTJJ37UIBXW52OU7WJTT3YPTKS/

#ArchLinux #Linux #RFC #OpenPGP #DigitalSignature #Automation #Signstar #NetHSM

Mein neuer PGP-Schlüsselpaar-Generator ist online!

Ich habe einen selbst erstellten PGP-Schlüsselpaar-Generator, den ich noch leicht optimiert habe, als Goodie auf meiner Website hinzugefügt.

Erstellt werden können folgende Schlüssel:

➡️ RSA - 4096 Bit
➡️ RSA - 8192 Bit

🆔 Für jeden öffentlichen Schlüssel wird automatisch ein Fingerprint erstellt

Die generierten PGP-Schlüsselpaare werden – wie bei meinem Passwortgenerator – vollständig clientseitig im Browser erzeugt. Es werden keine Daten auf dem Server gespeichert oder übertragen. Deine Daten bleiben bei dir.

Probier ihn aus und lass mich wissen, wie er dir gefällt! 😀

🔗 PGP-Schlüsselpaar-Generator: https://secunis.de/pgp-schl%C3%BCsselpaargenerator.html

:boost_ok:

#Secunis #PGP #Datenschutz #Verschlüsselung #IT-Security #OpenPGP #Privatsphäre

"CVE-2025-47934 – Spoofing OpenPGP.js signature verification"

https://codeanlabs.com/blog/research/cve-2025-47934-spoofing-openpgp-js-signatures/

#security #cybersecurity #infosec #openpgp #openpgpjs

Spoofing OpenPGP.js signature verification

https://codeanlabs.com/blog/research/cve-2025-47934-spoofing-openpgp-js-signatures/

#HackerNews #Spoofing #OpenPGP.js #signature #verification #OpenPGPjs #CVE2025 #cybersecurity #research

@gerowen Now try to do the same with my #python library for #openpgp please https://johnnycanencrypt.readthedocs.io/en/latest/ :)

#GnuPG 2.5.7 (dev) has been released (#OpenPGP / #GPG / #GNUPrivacyGuard / #PGP / #PrettyGoodPrivacy / #Security / #Gpg4win) https://gnupg.org/

#GnuPG 2.4.8 has been released (#OpenPGP / #GPG / #GNUPrivacyGuard / #PGP / #PrettyGoodPrivacy / #Security / #Gpg4win) https://gnupg.org/

Comparing #XMPP against #email protocols is too limited. What sets #deltachat apart is *vertical integration* and being driven by UI/UX considerations. Cross-platform Apps and Bots use the Rust core library which connects with #chatmail relays and classic email servers based on a higher level API -- abstracting over SMTP, MIME, #OpenPGP etc. See https://chatmail.at

#webxdc apps in turn use an even higher level stable API abstracting over email/xmpp/... see https://webxdc.org/docs/

The PGP Problem

https://www.latacora.com/blog/2019/07/16/the-pgp-problem/

#OpenPGP #GnuPG #PGP #GPG #PublicKey #Email

#AgeEncryption https://age-encryption.org
#Minisign https://jedisct1.github.io/minisign/

#AgePublicKey
age1s3n5ehvm8h3xjkc985hzjznw9cv0lk9ezj5heyy4m7l654rkzslq07ylps

#MinisignPublicKey
RWRK8XFYuCHjYX1J/7cKCUy6eQKNYVAurb/70Q6pK8kjGHALVORZGJ+o

Retired my 6 years old OpenPGP/GnuPG key today and replaced it.
Also updated the link to the public key in my Mastodon profile (stored on disroot.org).

#openpgp #gpg #gnupg

I just released version 0.1.2 of rsop-oct, a stateless #OpenPGP ("SOP") CLI tool for use with OpenPGP card hardware devices:

https://crates.io/crates/rsop-oct/

Like its sibling project #rsop, rsop-oct is based on @rpgp

This update makes integration with https://crates.io/crates/openpgp-card-state optional.

rsop-oct can now implicitly use persisted PINs via openpgp-card-state, or explicitly provided ones via the standard SOP CLI parameter '--with-key-password'.

For more on #SOP, see https://datatracker.ietf.org/doc/draft-dkg-openpgp-stateless-cli/

#PGP #GnuPG

I just released version 0.7.0 of #rsop, a stateless #OpenPGP ("SOP") CLI tool based on @rpgp:

https://crates.io/crates/rsop/

This version uses the new rPGP 0.16.0, with streaming message support.
It also comes with a number of bugfixes.

For more on #SOP, see https://datatracker.ietf.org/doc/draft-dkg-openpgp-stateless-cli/

#PGP #GnuPG

New release: #rPGP version 0.16.0 🧰🔐✨

https://github.com/rpgp/rpgp/releases/tag/v0.16.0

#OpenPGP implemented in pure #Rust, permissively licensed

This release features streaming message support: Now rPGP can process arbitrarily large messages, with modest memory requirements.

It adds experimental support for the upcoming OpenPGP #PQC IETF standard https://datatracker.ietf.org/doc/html/draft-ietf-openpgp-pqc

This release also brings various improvements for key generation, support for X448/Ed448, and many minor fixes.

our friends over at @rpgp just published a monster milestone, humbly tagged 0.16 😍 with

- streaming decryption and encryption

- post-quantum-cryptography

- API streamlining.

#rPGP is a full Rust implementation of #openpgp which counts among the fastest and most compliant implementations today, and includes security audits. Note: #deltachat uses a restricted subset of OpenPGP, and follows best practices (eg using the same ed25519 keys implementation as #signal) https://github.com/rpgp/rpgp/

@bjoern @treefit @chfkch you can send an #openpgp encrypted email to a delta chat address, yes.

We need something that has the decentralised web of trust of #OpenPGP and the edit verification/provenance of #C2PA (no X.509 CAs that nobody is going to customise)

#Gpg4win 4.4.1 has been released (#GnuPG / #OpenPGP / #GPG / #GNUPrivacyGuard / #PGP / #PrettyGoodPrivacy / #Security / #Kleopatra / #GPA / #GNUPrivacyAssistant / #GpgOL / #GpgEX) https://gpg4win.org/

But, more importantly: Getting a warning when my key is about to expire.

Luckily, this was pretty easy to write.

https://codeberg.org/scy/dotfiles/commit/9ef269f86356d80e53f6e7bbde9d85b65a21525f

#GPG #GnuPG #OpenPGP