• Possibly linux
    link
    fedilink
    English
    12 months ago

    It uses the same public key unless you manually change it. You don’t get the rolling keys provided by other systems

    • @MigratingtoLemmy
      link
      English
      22 months ago

      I don’t think I understand what you’re implying. Are you arguing that PGP implements less secure operations because it doesn’t have perfect forward secrecy? As far as I know there’s not much out there in terms of encryption schemes for data at rest which includes PFS. Even AGE didn’t have it last time I checked. If you know about something that does provide PFS for data at rest, let me know

        • @MigratingtoLemmy
          link
          English
          12 months ago

          This is a good read. I think it’s a good solution if it can be implemented properly. Are there applications you know of that allow you to personally (manually) encrypt text and communicate with another person like GPG does?

            • @MigratingtoLemmy
              link
              English
              1
              edit-2
              2 months ago

              And using these apps is not always an option. I like simplex, but sometimes email is one of the only options. PGP can be used agnostic of the technology used for transmission, and that’s exactly what we need to keep more people private instead of forcing them into a few select applications. If Diffie-Helman can’t be used in a transport-agnostic fashion then I do not see much progress in this direction.

              • Possibly linux
                link
                fedilink
                English
                12 months ago

                Just keep in mind PGP is weaker in the sense that it is easier to break due to its shared key.

                Email itself is not exactly a secure protocol

                • @MigratingtoLemmy
                  link
                  English
                  12 months ago

                  Shared key??? PGP works on a public-private key-pair, and unless you’re giving out your private key, it’s not shared with anyone. This is blatant misinformation

                  • Possibly linux
                    link
                    fedilink
                    English
                    12 months ago

                    The public key is public and there is a single vulnerable private key. Someone can identify you with the use of your public key and if someone gets access to your private key (maybe a solen device) they can decrypt logged messages that used that key. This means they can still get access even if you deleted the messages off your device.