From 1b30ec17ae65d4766c7f10c62ba488a61ae1111c Mon Sep 17 00:00:00 2001
From: Paul Schaub <vanitasvitae@fsfe.org>
Date: Sun, 17 Mar 2024 18:36:31 +0100
Subject: [PATCH] Add some information about the SED packet

---
 book/source/decryption.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/book/source/decryption.md b/book/source/decryption.md
index f0991ef..5e9ef76 100644
--- a/book/source/decryption.md
+++ b/book/source/decryption.md
@@ -181,4 +181,6 @@ Each chunk is decrypted using AEAD using the message key and an IV with appended
 
 ## SED
 
-Legacy mode: may be decrypted, but not produced.
+The Symmetrically Encrypted Data packet predates the SEIPD packet and is nowadays deprecated.
+Due to the lack of integrity protection, this packet is susceptible to a whole class of attacks where the attacker modifies the ciphertext.
+Therefore, implementations MUST NOT produce this packet and are encouraged not to accept incoming SED packages from untrusted sources.
\ No newline at end of file