Home / Series / Chaos Communication Congress / Aired Order / Season 35 / Episode 81

Attacking end-to-end email encryption

In this talk, I’ll present several attacks that leak the plaintext of OpenPGP or S/MIME encrypted emails to an attacker. Some of the attacks are technically interesting, i.e. the two different efail attacks, some are somewhat silly, yet effective. Some abuse HTML emails, some also work with plain ASCII emails. Furthermore, I’ll discuss our lessons learned and describe the efail-related changes to mail clients and the OpenPGP and S/MIME standards.

English
  • Originally Aired December 28, 2018
  • Runtime 60 minutes
  • Production Code 9463
  • Created December 27, 2018 by
    Administrator admin
  • Modified December 27, 2018 by
    Administrator admin
Name Type Role
Sebastian Schinzel Director