From b9341d921e89a7b0cd6a0de16aaac6d28a23735f Mon Sep 17 00:00:00 2001 From: "Tammi L. Coles" Date: Fri, 13 Oct 2023 16:15:05 +0200 Subject: [PATCH] clarify MDC --- book/source/03-cryptography.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/book/source/03-cryptography.md b/book/source/03-cryptography.md index 3fd7a3b..b10d29a 100644 --- a/book/source/03-cryptography.md +++ b/book/source/03-cryptography.md @@ -63,7 +63,7 @@ Where symmetric keys are used in OpenPGP for data encryption, they are called ei In OpenPGP version 6, AEAD replaced the MDC[^MDC] mechanism to address malleability. In earlier OpenPGP versions, malicious alterations to ciphertext might go unnoticed. AEAD guards against such undetected changes. -[^MDC]: In OpenPGP version 4, a mechanism called MDC (Modification Detection Code) was introduced to serve a comparable purpose as AEAD. While MDC is a non-standard mechanism, as of this writing, there are no known attacks against the scheme. +[^MDC]: OpenPGP version 4 introduced a mechanism called MDC (Modification Detection Code), which fulfills a comparable purpose as AEAD in safeguarding message integrity. MDC is a non-standard mechanism, but no known attacks have compromised this scheme as of this document's last update. By addressing the malleability problem, AEAD also counters a variation of the EFAIL[^efail] attack.