The road to post-quantum cryptography (PQC) has been long, but the end is nigh.

For the past nine months we’ve been working on technical debt issues in hockeypuck, resulting in the 2.3.x series of releases. This has included a major postgres schema redesign, in-place reloading, reindexing threads, configurable keyword search, and significant refactoring of hockeypuck’s internals. v2.3.3 is in final testing with the last of these improvements, and will be released soon.

But this is all just prep.

The goal is version 2.4, which will distribute v6 PGP keys, which support post-quantum algorithms for both encryption and signing. 2026 is the year of PQC in PGP, and the hockeypuck keyservers will be ready.

To enable the safe distribution of v6/PQC keys without breaking legacy software, we have developed an updated version of the venerable HKP API (for which HocKeyPuck is named). v1 and v2 HKP will be supported in parallel, but v6/PQC keys will only be distributed over v2.

HKPv2 is specified in https://datatracker.ietf.org/doc/html/draft-gallagher-openpgp-hkp and server implementation is underway in https://github.com/hockeypuck/hockeypuck/tree/feature/hkpv2 .

If you maintain PGP client software and wish to be PQC ready, now is the time to check out HKPv2 and what it means for your users. Join the discussion at https://groups.google.com/g/hockeypuck-devel

Hockeypuck v2.4 development is kindly supported by @NGIZero Core.

#openpgp #pgp #gnupg #pqc

Actualizamos nuestro sitio HTML de peering lite de #usenet con información y cómo contactarme, y corregimos el formato de peering.html https://news.hispagatos.org/ y https://news.hispagatos.org/peering.html. Usa siempre mi clave #gnupg #pgp para contactarme por correo electrónico, por favor, o serás ignorado. Feliz #Hacking 👋 🖥️ 🏴‍☠️ Recuerda también encontrarnos en #stoat. Únete a nuestra comunidad de #linux #gaming #mmorpg aquí: https://stt.gg/qryqZxMa.

@rek2

✏️ Hideout - простое и безопасное настольное приложение для шифрования и расшифровки файлов, работающее на основе GnuPG

©️ Бесплатная и с открытым исходным кодом программа

⬇️ Установка посредством: Flatpak и Snap пакетов

👉️ https://linuxmasterclub.ru/hideout/

#Linux #OpenSource #Программа #Software #Шифрование #GNUPG #PGP

I just released version 0.1.7 of rsop-oct, a stateless #OpenPGP ("SOP") CLI tool for use with OpenPGP card hardware devices:

https://crates.io/crates/rsop-oct/

Like its sibling project #rsop, rsop-oct is based on @rpgp

This update adds (initial) support for the SOP command 'update-key'.

This command allows extending the expiration times of components of an OpenPGP certificate using a primary key that is stored on an OpenPGP card device.

For more on #SOP, see https://datatracker.ietf.org/doc/draft-dkg-openpgp-stateless-cli/

#PGP #GnuPG

"Why Some Criticisms Matters More Than Others", by Robert J. Hansen:

"""
On the GnuPG-Users mailing list, a user asked the following (paraphrased) question:

> I am very well aware of the consistent and persistent campaign against GnuPG. Is there a reason for this?

There are many reasons.

Before we go further, the things I'm speaking of apply to both LibrePGP and RFC9580 OpenPGP. The criticisms made against one usually wind up getting made against the other, whether for good or ill. These criticisms fall on a spectrum, from infuriatingly dishonest all the way to carefully thought out and researched. I'll start with the ones I think are dishonest.
"""

https://gnupg.org/blog/20260320-some-criticism-matter.html

#GnuPG #PGP

If you're using #gnupg with a keyserver for "gpg --refresh-keys" and you're running into the bug of getting aborted with "No data", this script is a good workaround for updating your keys of a single email domain using a (organization) key server:

https://codeberg.org/publicvoit/my-domain-gpg-refresh-keys.sh

Background: gnupg fetches keys in chunks (batches) and if a single chunk doesn't contain a single address found on the key server (because you got the keys elsewhere), the whole update process is aborted. 🤦‍♂️

#gpg #OpenPGP

Mit GnuPG kannst du Texte und Dateien ganz einfach, plattformunabhängig, kostenlos, ohne Cloud-Zwang und sicher verschlüsseln. Die verschlüsselten Daten können sicher per E-Mail und Messenger versenden und/oder in einer Cloud gespeichert werden.

#gnupg #datenschutz #verschlüsselung #digitalesicherheit #email #messenger #cloud

https://gnupg.org