Profile picture
, 12 tweets, 3 min read
Some reflections on OpenPGP, from the perspective of approaching Enigmail's end-of-life. Respect intended towards all, malice towards none, but a couple of sacred cows might get skewered along the way.

1/
Everyone who says OpenPGP is embarrassingly ancient is right. Everyone who says it's bogus is wrong. The protocol itself is difficult to implement correctly and just feels clumsy and awkward by current standards. But for all that, it's still solid as a rock. 2/
In 15 years of supporting Enigmail users essentially every single day, *not once* did I see a security compromise traceable to a flaw in the protocol. Anyone proposing that OpenPGP should be replaced needs to answer the questions, "with what, and what's its track record?" 3/
In 15 years of supporting Enigmail users essentially every single day, I *constantly* saw pain points and failures from the ramshackle state of the OpenPGP ecosystem. It's bad. It's really, really bad. 4/
I give mad props to GnuPG for keeping a reference implementation alive for so long. I want GnuPG to continue supporting the latest and greatest in the OpenPGP spec. But I also think 99% of the projects incorporating it are doing it *very badly* -- sometimes Enigmail included! 5/
When TB calls Enigmail, Enigmail calls the shell, the shell calls GnuPG, etc., every one of those interface points is a possible interface break. And those interface breaks happened *a lot* and sometimes produced very serious security conditions. 6/
The #Efail attack? Interface break (and a bad one). Had no effect on the OpenPGP protocol.

If I could give security developers one bit of hard-learned advice from Enigmail: pay attention to your friction points and minimize them whenever possible. 7/
Next: a much bigger problem than the OpenPGP protocol's antiquity and baroqueness is the near total lack of resources. The reason why GnuPG gets integrated into everything (when it was never designed to be integrated into *anything*) is because even today ... 8/
there is no high-quality OpenPGP library. (GPGME is an improvement, but still not there yet.) Enigmail was active for ~20 years and we were always so under-resourced we could never get around to implementing OpenPGP in Javascript to reduce our GnuPG dependency. 9/
But since OpenPGP.js (hi, @ProtonMail!), which has support from a company with good resources, we were able to rely on that more and reduce our dependencies on GnuPG... which in turn increased Enigmail's reliability by leaps and bounds. 10/
@ProtonMail Remember, it's not that GnuPG is bad! It's that *interface points are inherently risky*. TB->Enigmail->shell->GnuPG->shell->Enigmail->TB became TB->Enigmail->TB.

Mad props to GnuPG. You guys know I love you. But the standard GnuPG integration pattern is *awful*. 11/
@ProtonMail So. Taking this to an overdue conclusion:

OpenPGP: old, baroque, kinda smelly. Works!
GnuPG: great ref. impl. but think hard about integrating it into your application.
Interface points: watch these traitors like they're going to stab you in the back, because they are.

12/12
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Robert J. Hansen
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related hashtags

#Efail

More from @robertjhansen see all

Profile picture
Robert J. Hansen
@robertjhansen
Good news, everyone: Enigmail, the OpenPGP plugin for the Thunderbird email client, is being abandoned! Yaaaaaay!

Better news, everyone: it's because native OpenPGP support will be included in Thunderbird starting in version 78! YAAAAAAY! 1/
Enigmail for Thunderbird 68 is the final iteration of Thunderbird, and will continue to be supported for at least six months after the introduction of Thunderbird 78. You'll have at least six months to migrate. *WE ARE NOT ABANDONING OUR USERS*. 2/
We've been in discussions with Mozilla for literally *years* about getting OpenPGP supported natively within Thunderbird. We were sworn to secrecy and couldn't talk about this until it was official, but now it is, and I couldn't be happier about it.

*This*. *Is*. *Awesome*. 3/
Read 7 tweets
Profile picture
Robert J. Hansen
@robertjhansen
When I entered an R&D lab in 2008, their rule #1 was written on the whiteboard: MOST OF IT IS WRONG. It was a good rule but incomplete, so I picked up a marker and added rule #2: WE FAIL FASTER.

On those two rules all R&D shops live or die. 1/
99% of all new ideas are failures, and yet new ideas have such appeal that often we get overly attached to them. You have to resist this temptation. Remind yourself constantly that most of it is wrong, even — especially! — the ideas you like. 2/
The only way to get to the 1% of good ideas is to plow your way through the 99% of bad ideas. Structure your lab so that bad ideas are detected as early as possible. Each second saved brings you a second closer to a good idea. Fail quickly! 3/
Read 4 tweets
Profile picture
Robert J. Hansen
@robertjhansen
"I don't know much about cyberwarfare—"

Nobody does. Welcome to the club.

"—but why don't you believe the Bloomberg story about the Chinese rooting, uh, well, everything?"

Economics, not technology. You don't need to understand tech: you just need to be able to multiply. 1/
Imagine you have a skeleton key that can open anything from a twelve-year-old's locked diary to a bank vault. The problem is as soon as you get caught using it everyone's going to change their locks. 2/
You have an expected maximum possible loot it'll help you steal. Billions upon billions. You're going after Fort Knox. So even if there's only a one in a thousand risk of getting caught, you can't justify using the key for anything less than a million bucks profit. 3/
Read 7 tweets

Related threads

Profile picture
Mike McCarthy
@mikemccarthy
I’ve now read all 138 pages of the UTB LLC v Sheffield United judgement, it contains some fascinating and sometimes extraordinary details.

judiciary.uk/judgments/utb-…

Thread...
First some background, the dispute revolves around the investment and shareholders agreement (ISA) between Kevin McCabe (Sheffield United Limited) and Prince Abdullah (UTB).
In 2013 UTB received a 50% shareholding of Sheffield United after it agreed to invest £10m into the club over two seasons from 2013/14.
Read 35 tweets
Profile picture
QRaptor
@QRaptor1
Geometry, Drones & odd coincidences on Epstein's Little St James. I recently spent some time perusing the LSJ drone videos. Let's take a look. #QAnon #WWG1WGA #UnsealEpstein #LittleStJames @StormIsUponUs @prayingmedic @TrueEyeTheSpy
In the DJI0025 video, I noticed the pilot follows a straight-line for the entire video, which starts at small shack that looks like-at the least-it has electrical cabling inside; then, travels in a straight line towards the main house. Let's see what we fly over along the way.
Other than crossing a road and shrubs, the first thing we run into (laid out perfectly on our straight line) is a gravel pit which -to me- looks as if it may have once been a tunnel entrance, but has now been filled in. Something about it just looks "off".
Read 11 tweets
Profile picture
Stu Cvrk
@STUinSD
Thread: More Commentary on the Upcoming State Visit and UK Spygate

1. I posted a thread on Saturday that ruminated on the upcoming state visit to the UK by @POTUS, as well as some background info on the UK Deep State and its influence on the US.
2. The thread also touched on “UK Spygate” with a bit of speculation on @POTUS using it as leverage during his visit:
3. Subsequent dialog with a retired IC pal of mine resulted in some additional perspective that is definitely of interest. Here is what he said: [with a couple of my comments added in brackets along the way]

<quote>
Read 38 tweets
Profile picture
വിവസ്വാന​
@Hiranyareta
Few Tweets on why Sayed Ahmad Shah Barelavi moved to Balakot in Pakhtoon area.

" Abdul Aziz (1746-1822), son of Shah Waliullah, converted his father’s jihãd against the Marathas into a jihãd against the British as latter were on the rise post-1761 defeat of Marathas. 1/21
A fatwa was issued that India under British rule had become a Dãr-ul-harb (zone of war or infidel land) and that it was the duty of all mu‘mins either to migrate to a Dãr-ul-Islãm (Islamic country) or to fight the firanghî for the restoration of Muslim rule. 2/21
Abdul Aziz found a devoted disciple in Syed Ahmad Barelvi. To start with, he sent Barelvi to get training in the art of warfare by joining the army of Amir Khan, the Pindari chieftain.3/21
Read 21 tweets
Profile picture
Ratnakar Sadasyula
@GabbarSanghi
Today is Jayanti of Lance Naik Albert Ekka, Param Vir Chakra awardee, who gave up his life for the nation during the 1971 War on Dec 3 . One of Jharkhand's most famous heroes along with Birsa Munda, he actually saved Agartala from Pakistan.
While Albert Ekka, and his bravery during the '71 war is well known, what many do not know is that he was the Man who saved Agartala. It was thanks to him, that Agartala was not taken over by Pakistan, and still remained a part of India.
Albert Ekka was born in a Christian Oraon family on Dec 27, 1942 in a small tribal hamlet, in Jharkhand's Gumla district. Growing up in the jungles of Jharkhand, he had a natural flair for sports, and was pretty adept with the bow and arrow.
Read 17 tweets
Profile picture
Ratnakar Sadasyula
@GabbarSanghi
Belated tribute to Lance Naik Albert Ekka, Param Vir Chakra awardee, who gave up his life for the nation during the 1971 War on Dec 3 . One of Jharkhand's most famous heroes along with Birsa Munda, he actually saved Agartala from Pakistan.
While Albert Ekka, and his bravery during the '71 war is well known, what many do not know is that he was the Man who saved Agartala. It was thanks to him, that Agartala was not taken over by Pakistan, and still remained a part of India.
Albert Ekka was born in a Christian Oraon family on Dec 27, 1942 in a small tribal hamlet, in Jharkhand's Gumla district. Growing up in the jungles of Jharkhand, he had a natural flair for sports, and was pretty adept with the bow and arrow.
Read 17 tweets

Trending hashtags

#SamManekshaw #Life #Cohn #Salute #life #blog #MADAGASCAR #UnsealEpstein #Syria #Respect #FuelPriceHike #Trumpian #Happy #implicit #LestWeForget #Naman #Mnuchin #mitdeeplearning #knowledgeofself #Kusher #McMaster #keyserver #Canada #gnupg #wish
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!