Mirrors
/
open-keychain
mirror of https://github.com/open-keychain/open-keychain.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Updated OpenPGP Security (markdown)

Dominik Schürmann 2016-01-05 00:26:46 +01:00
parent f2335c4808
commit b00263d2a1
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
OpenPGP-Security.md

@ -64,7 +64,7 @@ In about 99% of all use cases there are better photos to be found in Android's c
## Key IDs aren't displayed ## Key IDs aren't displayed
* Short key IDs (last 32 bits of the key's fingerprint) are trivially to replicate via a [preimage attack](https://en.wikipedia.org/wiki/Preimage_attack). * Short key IDs (last 32 bits of the key's fingerprint) are trivially to replicate via a [preimage attack](https://en.wikipedia.org/wiki/Preimage_attack).
* Two equal long key IDs can be generated using a [collision attack](https://en.wikipedia.org/wiki/Collision_resistance) * Two equal long key IDs can be generated using a [collision attack](https://en.wikipedia.org/wiki/Collision_resistance)
* Examples can be found at See https://github.com/coruus/cooperpair * Examples can be found at https://github.com/coruus/cooperpair
We want two things from a key management framework: unforgability, and human-intelligible handles. Key IDs fail at both. We want two things from a key management framework: unforgability, and human-intelligible handles. Key IDs fail at both.