vanitasvitae
/
openpgp-notes
mirror of https://codeberg.org/openpgp/notes.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add some information about the SED packet

This commit is contained in:
Paul Schaub 2024-03-17 18:36:31 +01:00
parent 82d8f821df
commit 1b30ec17ae
Signed by: vanitasvitae
GPG Key ID: 62BEE9264BF17311
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
book/source/decryption.md
View File

@ -181,4 +181,6 @@ Each chunk is decrypted using AEAD using the message key and an IV with appended
## SED
Legacy mode: may be decrypted, but not produced.
The Symmetrically Encrypted Data packet predates the SEIPD packet and is nowadays deprecated.
Due to the lack of integrity protection, this packet is susceptible to a whole class of attacks where the attacker modifies the ciphertext.
Therefore, implementations MUST NOT produce this packet and are encouraged not to accept incoming SED packages from untrusted sources.