roughconsensusandrunningcode/slides-openpgp-2024
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

vulnerabilità librepgp

Browse source
This commit is contained in:
Fabrizio T. 2024-11-12 09:17:07 +01:00
parent 75240e0a9e
commit 8268aaa2cd
1 changed files with 7 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
src/slides.md
View file

@ -186,19 +186,18 @@ https://blog.pgpkeys.eu/critique-critique.html
table {font-size: 24px; width: 100%; margin: 20px 0 0 0} table {font-size: 24px; width: 100%; margin: 20px 0 0 0}
tr td:nth-child(4){font-size:16px;} tr td:nth-child(4){font-size:16px;}
p {margin-top:0;} p {margin-top:0;}
em {font-size: 20px} small {font-size: 20px}
em sup {display: inline-block; margin-left: 10px; font-size: 16px}
</style> </style>
# OpenPGP vs LibrePGP 3/3 # OpenPGP vs LibrePGP 3/3
| Feature | OpenPGP | LibrePGP<sup>*</sup> | Note | | Feature | OpenPGP | LibrePGP<sup>*</sup> | Note |
|--------------------------|-----------------------|----------------------|------| |--------------------------|-----------------------|----------------------|------|
| Versione pacchetti | 6 | 5 | molto simili (eccetto msg cifrati AEAD) | | Versione chiavi e firme | 6 | 5<sup>+</sup> | molto simili (eccetto msg cifrati AEAD) |
| Algo firma default | Ed25519 | ECDSA | | | Algo firma default | Ed25519 | ECDSA | |
| Algo asimmetrico default | X25519 | ECDH | | | Algo asimmetrico default | X25519 | ECDH | |
| Algo simmetrico default | AES128/OCB | AES128/OCB | implementati e serializzati diversamente | | Algo simmetrico default | AES128/OCB | AES128/OCB | implementati e serializzati diversamente |
| Algo hash default | SHA256 | SHA256 | | | Algo hash default | SHA256 | SHA256 | |
| AEAD | OCB, EAX, GCM | OCB, EAX | implementati e serializzati diversamente | | AEAD | OCB, EAX, GCM | OCB<sup>+</sup>, EAX| implementati e serializzati diversamente |
| Memory-hard S2K | Argon2 | No | | | Memory-hard S2K | Argon2 | No | |
| Session-Key-Reuse | Sì<sup>1</sup> | No | <sup>1</sup> Key derivation via HKDF | | Session-Key-Reuse | Sì<sup>1</sup> | No | <sup>1</sup> Key derivation via HKDF |
| Firma non deterministica | Sì | No | | | Firma non deterministica | Sì | No | |
@ -206,7 +205,8 @@ https://blog.pgpkeys.eu/critique-critique.html
| Post-Quantum Crypto | altre RFC<sup>3</sup> | ML-KEM<sup>4</sup> |<sup>3</sup> [draft-ietf-openpgp-pqc](https://datatracker.ietf.org/doc/draft-ietf-openpgp-pqc/) (cifratura e firma)<br><sup>4</sup> Solo cifratura, mod. op. incompatibile | | Post-Quantum Crypto | altre RFC<sup>3</sup> | ML-KEM<sup>4</sup> |<sup>3</sup> [draft-ietf-openpgp-pqc](https://datatracker.ietf.org/doc/draft-ietf-openpgp-pqc/) (cifratura e firma)<br><sup>4</sup> Solo cifratura, mod. op. incompatibile |
| Altre funzionalità | altre RFC | Incluse | es. 1pa3pc, key flags vari, ... | | Altre funzionalità | altre RFC | Incluse | es. 1pa3pc, key flags vari, ... |
<em><sup>*</sup> [Versione Draft settembre 2024](https://datatracker.ietf.org/doc/draft-koch-librepgp/)</em> <small><sup>*</sup> [Versione Draft settembre 2024](https://datatracker.ietf.org/doc/draft-koch-librepgp/)_</small>
<small><sup>+</sup>_ A. Gallagher _[A Summary of Known Security Issues in LibrePGP](https://blog.pgpkeys.eu/security-issues-librepgp-2024-08.html)_</small>
--- ---
<style scoped> <style scoped>