Hacker News new | past | comments | ask | show | jobs | submit login

GPG adds something that they call MDC, which is kinda similar to a mac in authenticated encryption schemes. It is enabled by default.



The MDC scheme exists- it's also sketchy as all hell. Wouldn't trust it if serious adversaries are a reasonable threat for you.

https://github.com/gpg/gnupg/blob/master/g10/mainproc.c


Yeah, MDC was added as something better than nothing for unsigned messages/files. It has ended up being remarkably robust over the years, considering. The biggest deal is that you can entirely remove it. As a result stuff these days tends to consider a missing MDC as an invalid MDC.




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: