pgpfan:agevspgp
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revision | |||
pgpfan:agevspgp [2021/12/30 22:58] – [Data Recovery] Make ultimate point explicit. b.walzer | pgpfan:agevspgp [2021/12/30 23:01] (current) – [File Substitution] Typo. b.walzer | ||
---|---|---|---|
Line 87: | Line 87: | ||
====File Substitution==== | ====File Substitution==== | ||
- | Public key encryption has a generic consideration that is quite relevant here. Anyone with access to the public key can easily create a file that will pass any file modification tests ... because after all //that// file has not been modified after creation. You can try to keep the public key secret but a public key design does not guarantee | + | Public key encryption has a generic consideration that is quite relevant here. Anyone with access to the public key can easily create a file that will pass any file modification tests ... because after all //that// file has not been modified after creation. You can try to keep the public key secret but a public key design does not guarantee |
The traditional fix for this weakness is to cryptographically sign the file ... and, once again, age does not do signatures. An age user would need to go through the process of finding a separate signing utility and would have to apply it correctly while using a separate signature file. A GnuPG user would only have to add a '' | The traditional fix for this weakness is to cryptographically sign the file ... and, once again, age does not do signatures. An age user would need to go through the process of finding a separate signing utility and would have to apply it correctly while using a separate signature file. A GnuPG user would only have to add a '' |
pgpfan/agevspgp.txt · Last modified: 2021/12/30 23:01 by b.walzer