On 02/20/2013 06:41 PM, Jim Treinen wrote: > I am new to GPG, specifically GPGME. I am trying to familiarize > myself with programming against the GPGME C library. I was wondering > if it is possible to explicitly specify the use of AES 256 and choose > a block mode when using the OpenPGP protocol ?
It is possible to force the use of AES-256 whenever possible: add "--cipher-algo aes256" to the GnuPG command line. However, this is thoroughly not advised. It's possible to create traffic your recipient will not be able to decrypt, for instance (not every OpenPGP implementation supports AES). There are also other edge cases in which using cipher-algo can get you in trouble. OpenPGP specifies its own block mode, which is basically CFB64 with some special sauce added -- it's a hack which dates back many years. Every now and again there's some talk about replacing it with something more modern, like Galois counter mode or somesuch, but so far nothing's come of it. So the answer to this one is no, you really can't specify a block mode.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
