GnuPG 2.1.16 released
今回はセキュリティ・アップデートはなし。
- gpg: New algorithm for selecting the best ranked public key when using a mail address with
-r,-R, or--locate-key. - gpg: New option
--with-tofu-infoto print a new “tfs” record in colon formatted key listings. - gpg: New option
--complianceas an alternative way to specify options like--rfc2440,--rfc4880, et al. - gpg: Many changes to the TOFU implementation.
- gpg: Improve usability of
--quick-gen-key. - gpg: In
--verbosemode print a diagnostic when a pinentry is launched. - gpg: Remove code which warns for old versions of gnome-keyring.
- gpg: New option
--override-session-key-fd. - gpg: Option
--outputdoes now work with--verify. - gpgv: New option
--outputto allow saving the verified data. - gpgv: New option
--enable-special-filenames. - agent, dirmngr: New
--supervisedmode for use by systemd and alike. - agent: By default listen on all available sockets using standard names.
- agent: Invoke scdaemon with
--homedir. - dirmngr: On Linux now detects the removal of its own socket and terminates.
- scd: Support ECC key generation.
- scd: Support more card readers.
- dirmngr: New option
--allow-version-checkto download a software version database in the background. - dirmngr: Use system provided CAs if no
--hkp-cacertis given. - dirmngr: Use a default keyserver if none is explicitly set
- gpgconf: New command
--query-swdbto check software versions against an copy of an online database. - gpgconf: Print the socket directory with
--list-dirs. - tools: The WKS tools now support draft version -02.
- tools: Always build gpg-wks-client and install under libexec.
- tools: New option
--supportedfor gpg-wks-client. - The log-file option now accepts a value “
socket://” to log to the socket named “S.log” in the standard socket directory. - Provide fake pinentries for use by tests cases of downstream developers.
- Fixed many bugs and regressions.
- Many changes and improvements for the test suite.
パッと見, TOFU (Trust On First Use) 周りをかなりいじってる感じかねぇ。
Windows 版を起動するとこんな感じになる。
$ gpg --version
gpg (GnuPG) 2.1.16
libgcrypt 1.7.3
Copyright (C) 2016 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <https://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Home: ********
サポートしているアルゴリズム:
公開鍵: RSA, ELG, DSA, ECDH, ECDSA, EDDSA
暗号方式: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH,
CAMELLIA128, CAMELLIA192, CAMELLIA256
ハッシュ: SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224
圧縮: 無圧縮, ZIP, ZLIB, BZIP2
いつもの感じ。
- 暗号技術入門 第3版 秘密の国のアリス
- 結城 浩 (著)
- SBクリエイティブ 2015-08-25 (Release 2015-09-17)
- Kindle版
- B015643CPE (ASIN)
- 評価
SHA-3 や Bitcoin/Blockchain など新しい知見や技術要素を大幅追加。暗号技術を使うだけならこれ1冊でとりあえず無問題。