Bug 4027 - SMIME: please implement RFC6476
Summary: SMIME: please implement RFC6476
Status: NEW
Alias: None
Product: Claws Mail (GTK 2)
Classification: Unclassified
Component: Plugins/Privacy/SMIME (show other bugs)
Version: 3.17.0
Hardware: PC All
: P3 enhancement
Assignee: users
URL: https://datatracker.ietf.org/doc/rfc6...
Depends on:
Blocks:
 
Reported: 2018-05-17 22:12 UTC by kardan
Modified: 2018-05-17 22:12 UTC (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description kardan 2018-05-17 22:12:51 UTC 
This document specifies the conventions for using Message
   Authentication Code (MAC) encryption with the Cryptographic Message
   Syntax (CMS) authenticated-enveloped-data content type.  This mirrors
   the use of a MAC combined with an encryption algorithm that's already
   employed in IPsec, Secure Socket Layer / Transport Layer Security
   (SSL/TLS) and Secure SHell (SSH), which is widely supported in
   existing crypto libraries and hardware and has been extensively
   analysed by the crypto community. 

https://datatracker.ietf.org/doc/rfc6476/

I don't know if this is already implemented. It was suggested as a solution for security issue with s/mime lately:

"The problem with S/MIME implementations missing integrity protection
is serious and we hope that vendors will quickly agree on implementing
RFC6476 or something similar. This seems to be the most interesting
finding, as it cannot be resolved quickly and it reminds everybody
to be careful with contents that can become active as a backchannel
or exploit code."

http://lists.wald.intevation.org/pipermail/gpg4win-devel/2018-May/001696.html

Thanks for your great work!
Note You need to log in before you can comment on or make changes to this bug.