Encryption: Use OpenPGP to de/encrypt files, with Markor compatibility #1378
Replies: 2 comments 8 replies
-
gpg is just a software. If the same encryption algorithm (with same parameters) is used with any tool that should generate the same result. Isn't it? |
Beta Was this translation helpful? Give feedback.
-
@acronymy if you want a "common" format, you'll need to implement that yourself. My 2 cents, it's easy to misuse complex crypto software like GPG. The advantage of the current format is that it is extremely easy to use with little risk of misuse. RE https://github.com/open-keychain/open-keychain - be aware it's not actively maintained. I share your concern over having other tools that are compatible, so I wrote my own ;-) Which I use on desktop (Windows and Linux) in the command line. My only critic / concern I would have over the jenc format today is that the KDF uses 10000 iterations. OWASP recommends more than that today - see https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#using-work-factors (as of today 210,000 iterations is the recommendation for PBKDF2-HMAC-SHA512, i.e. an extra 200K!). @opensource21 and @gsantner where is a good place to discuss changes to KDF? I think the current KDF is fine, but we ought to consider a new format version (V002?) same as the current v001 but with a higher iteration count. As always, thank you @gsantner for such an awesome tool 🙏 |
Beta Was this translation helpful? Give feedback.
-
General information
Description
Since markor can decrypt AES256 files. I can use GPG instead of the jpencconverter as the output should be compatible.
To encrypt
a.md
toa.md.gpg
I do:Compatibility with OpenPGP
Could you please tell us if markor expects files to be compatible with Openpgp?
Compression Algorithm
By default gpg uses zip for compression. And whether Markor expects the encrypted file to be uncompressed or zip or zlib compressed?
File naming convention
Also, what extension of encrypted file is supported my Markor? If you can tell me this then I could use same file naming convention with
gpg
. Or is it that the encrypted file should also be called asa.md
(above example)?Note
I am unsuccessful in using GPG encrypted file with Markor, if you could tell me the above I might be able to use same settings with GPG.
Beta Was this translation helpful? Give feedback.
All reactions