[cryptography] OpenPGP in Python: Security evaluations?

stef s at ctrlc.hu
Thu Apr 23 05:07:56 EDT 2015


On Thu, Apr 23, 2015 at 08:25:14AM +0200, Fabio Pietrosanti (naif) - lists wrote:
> Everyone, including GlobaLeaks, is using python-gnupg wrapper but that's
> an HORRIBLE software design choice (having a wrapper that fire an
> executable) and we want to fix that.

from what aspect do you consider this broken?

considering the fine research of Eran Tromer i'd say that what you are up to
seems to break things more than they were before you started "fixing" things.

you seem to build a system with maximum side-channels, your previous
javascript client question points in a similar direction. why?

-- 
otr fp: https://www.ctrlc.hu/~stef/otr.txt


More information about the cryptography mailing list