or Create a profile

Home Feedback

32bit key ids are not secure

Peter's Avatar

Peter

31 Dec, 2014 12:23 PM

Hi,

I know there will some charge for your GPGtool larer on, are any of you aware of this?

,,32bit key ids are not secure

In the example below, a key is requested with its 32bit key id. The key server has two keys with the specified key id and GPG imports both keys. It is easy to generate and publish a key that looks identical if you only use 32 bits when specifying a key.,,

More info here: https://evil32.com/

Can you please comment.

  1. Support Staff 1 Posted by Luke Le on 09 Jan, 2015 01:40 PM

    Luke Le's Avatar

    Hi Peter,

    we've answered this question in a different discussion:
    http://support.gpgtools.org/discussions/feedback/1126-how-many-bits...

    Hope that helps.

  2. 2 Posted by Marcel on 08 Feb, 2015 05:01 PM

    Marcel's Avatar

    Hi Peter,

    best practice is ALWAYS to check the full fingerprint of a key, because also 64 bit key IDs are trivially collidable, which is another potentially serious problem, see:

    http://thread.gmane.org/gmane.ietf.openpgp/7413

    and

    https://www.debian-administration.org/users/dkg/weblog/105

    A lot of people are not aware that the 32 bit key ID and also the 64 bit key ID is visible in the full fingerprint of the key.

    See as an example my actual business key:

    Fingerprint: ce633cc5d5d71455f9cd5693dffe8de31a7205f4
    Long Key ID: DFFE8DE31A7205F4
    Short Key ID: 1A7205F4

    As you can see the long and short key IDs are just the last 16 or 8 digits of its fingerprint respectively.

    But I agree that we (and the GPGTools team) should think about how to make all this easily useable and secure for John Doe too.

    Some of these 'best practice' suggestions will go into my new 'beginners manual' about the "GPGSuite & Yosemite", quoting:

    "If you want to deal with a cryptographically-strong identifier for a key, you should use the full fingerprint. You should never rely on the short, or even long, Key ID."

    source: https://help.riseup.net/en/security/message-security/openpgp/best-p...

    All the best,
    Marcel

  3. 3 Posted by Peter Volek on 08 Feb, 2015 05:14 PM

    Peter Volek's Avatar

    Hi Marcel,

    Thank for writing back, I am a big support of yours in the arena. I will
    follow the developments at GPGTools. I am glad there are people out here
    questioning the ability of the current key structure and use.

    Regards

    Peter

  4. Luke Le closed this discussion on 13 Feb, 2015 06:11 PM.

Comments are currently closed for this discussion. You can start a new one.

  • New Issue

  • Conversation Started

  • The discussion is closed

    No more actions from GPGTools or the discussion starter are required.

  • Re-open the discussion

Private Permissions

This discussion is private. Only you and GPGTools support staff can see and reply to it.

Public Permissions

This discussion is public. Everyone can see and reply to it.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac

Recent Discussions

21 Mar, 2025 07:45 PM uninstall
11 Mar, 2025 08:55 AM GPG Keychain: Dialog zur Erstellung von neuen Keys
06 Feb, 2025 05:56 PM Cannot copy SHA256 sum for stable package download
06 Feb, 2025 04:00 PM After installing 15.3, GPG clients cannot find any keys
29 Jan, 2025 03:32 PM MacGPG: New tag for GPGTools pinentry?

Recent Articles

Modification Detection Code (MDC) Errors
Uninstall GPG Suite
GPG Mail and macOS 15 Sequoia + 14 Sonoma Known Issues
First steps - where do I start, where do I begin? (Setup GPGTools, Create a new key, Your first encrypted email)
How to enable GPG Mail on macOS