@rysiek So many of the cryptographers I've followed over the years, whom I learned about PGP from and through, are now spending time slamming it and calling it a once, now, and always failure.
Maybe I missed a memo someplace.
@drwho @rysiek I'll sit myself in the 'pgp is and has always been a tool suited to particular uses and if folks would understand which mathematical properties were and weren't guaranteed they'd be a lot less peculiar about it' boat. It's probably a pretty lonely one but... so much of the argument both for and against in the wider techsphere seems to consist of 'but humans can't understand numbers and select the crypto properties they want correctly' which :eyeroll: is an education issue.
Quite honestly, GnuPG at some point started being a problem, rather than a solution. Hence projects like @sequoiapgp , who are doing some amazing work with making OpenPGP, well, usable.
At the same time, it remains a useful and important tool. People ain't going to move off of e-mail, because there's no-where to move to:https://sequoia-pgp.org/blog/2021/06/29/202106-yes-we-want-cryptographic-protection-for-email/
That's a great article! This point is one I rarely see mentioned:
there is a fair amount of evidence that people who have a pressing need can use OpenPGP successfully
I'm glad I'm not the only one banging that drum. And thanks for turning me on to Sequoia PGP, which I was unaware of!
This Mastodon instance is for people interested in technology. Discussions aren't limited to technology, because tech folks shouldn't be limited to technology either!