← Back to context

Comment by kaoD

3 months ago

> there is nothing today as secure as GPG

Depending on what part of the huge hulk that GPG is, there are many tools that are as secure (or more) than it.

For encryption age[0] comes to mind. For signing minisign[1] or, more recently, plain ssh-keygen[2]. For encryption at rest, restic[3].

PGP having all this built-in with forward-compatibility is a liability.

[0] https://github.com/FiloSottile/age

[1] https://github.com/jedisct1/minisign

[2] https://man.openbsd.org/ssh-keygen.1

[3] https://github.com/restic/restic

1 comment

kaoD

Reply
XorNot  3 months ago

The 4 tools you've listed all lack any notion of trust inheritance, which is an utterly vital property of any good crypto system.

The only viable alternative for that is x509 and that's useless for individuals due to the design.