Inline-encryption, encryption failure when storing sent mails

Daniel Kahn Gillmor dkg at fifthhorseman.net
Tue Feb 18 10:31:58 PST 2014


On Tue 2013-08-20 13:03:27 -0400, Daniel Kahn Gillmor wrote:
> I've been meaning to write this up more cleanly, but a summary here will
> have to do for now:
>
> The MIME Content-Type header for an inline-PGP-signed e-mail message is
> not signed.  This means that an attacker can replay a signed message
> while undetectably changing the Content-Type.  One example of such an
> attack is to leave the base Content-Type as text/plain but to switch
> charsets -- the same bytestream can then be interpreted differently.

I've finally written this up, with a demonstration.  I'm hosting it here
for now:

   https://dkg.fifthhorseman.net/notes/pgp-inline-harmful/

i hope this is useful for future discussions about inline PGP.

Please let me know if you see any problems with the text or if you have
any questions.

   --dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 948 bytes
Desc: not available
URL: <http://notmuchmail.org/pipermail/notmuch/attachments/20140218/2d90bc0e/attachment.pgp>


More information about the notmuch mailing list