.. to only display contents if there was integrity protection by either > a) MDC > b) AEAD > c) a signature over the whole contents from someone where it has been > encrypted to (if this is feasable to detect).
if users or frontends still want to show contents, to me it seems good if * there is a very explicit disable-safety-button * ideally working only for one encryption, so it has been issued explicitely each time * a warning against active content which may become active much later * an attempt to prevent active backchannels as much as possible (e.g. by only showing plain text and saving as plain-text suffix) would need to be put in the documentation so GnuPG frontends know. Regards, Bernhard -- www.intevation.de/~bernhard +49 541 33 508 3-3 Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998 Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
