Am 12.08.19 um 17:47 schrieb Stefan Claas via Gnupg-users:
> Sebastian Schinzel wrote:
>
>> Dear all,
>>
>> Jens Müller just gave a talk at DEFCON about Covert Content Attacks
>> against S/MIME and OpenPGP encryption and digital signatures in the
>> email conte
Dear all,
Jens Müller just gave a talk at DEFCON about Covert Content Attacks
against S/MIME and OpenPGP encryption and digital signatures in the
email context. He just published the PoC emails that he used in the talk
and they might be useful for further testing.
https://github.com/RUB-NDS/Cover
Am 06.06.2018 um 20:19 schrieb Werner Koch:
> Thanks for responding. However, my question was related to the claims
> in the paper about using CRL and OCSP as back channels. This created the
> impression that, for example, the certificates included in an encrypted
> CMS object could be modified i
Am 06.06.2018 um 10:04 schrieb Werner Koch:
> On Mon, 21 May 2018 19:11, r...@sixdemonbag.org said:
>
>> Efail is not just an HTML rendering bug. It includes very real
>> attacks against S/MIME as it's used by thousands of corporations.
>
> I have not yet seen any hints on how a back-channel wit
