dkgpg - Distributed Key Generation (DKG) and Threshold Cryptography for OpenPGP
|Repository||openSUSE Oss all|
|Download size||378.25 KB|
|Installed size||2.08 MB|
The Distributed Privacy Guard (DKGPG) implements Distributed Key Generation (DKG) and Threshold Cryptography for OpenPGP. The generated public keys are RFC4880 compatible and can be used by e.g. GnuPG. The main purpose of this software is distributing power among multiple parties, eliminating single points of failure, and increasing the difficulty of side-channel attacks on private key material. DKGPG consists of a number of command-line programs. The current implementation is in experimental state and should NOT be used in production environments. A shared private key and a common public key (currently only DSA/ElGamal) are generated. Further interactive protocols perform the private operations like decryption and signing of files, provided that a previously defined threshold of parties/devices take part in the distributed computation. Due to the interactiveness of the protocols, a lot of messages between participating parties have to be exchanged in a secure way. GNUnet's mesh-routed CADET srvice is used to establish private and broadcast channels for this message exchange. A TCP/IP-based service is included as an alternative. It may be combined with torsocks and NAT of a local hidden service.
Install dkgpg rpm package:
# zypper install dkgpg
2019-04-28 - Karol Babioch <email@example.com> - Update to version 1.1.1: Some small improvements have been applied for dkg-generate: Two new options ("-u" and "-N") allow providing the initial user ID and to disable the passphrase at command line. Moreover, since this release dkg-timestamp and dkg-timestamp-verify require a special key usage flag from recent RFC 4880bis draft to select so-called timestamping keys. Finally, the synchronization time of the internally used broadcast protocol was reduced to a more reasonable amount and in dkg-decrypt the detection of end of data for message and decryption shares was changed.
2018-12-10 - firstname.lastname@example.org - Update to version 1.1.0: This release supports Authenticated Encryption with Associated Data (AEAD) in accordance to RFC 4880bis (draft); this can be enforced with the new added option "-a" when dkg-(d)encrypt is used. For using domain parameters, as described in RFC 7919, one should specify the new option "-r", when dkg-gencrs is used. Last, for key generation (dkg-generate) the timestamp option was added ( "--timestamping") which sets a key usage flag.
2018-11-12 - Karol Babioch <email@example.com> - Update to version 1.0.9 This release improves the possibilities of DKGPG further. With the new programs dkg-adduid and dkg-revuid an user ID can be added and revoked, respectively. The program dkg-revoke now supports a human-readable reason for revocation (by option "-R") and dkg-decrypt verifies an included signature according to a given key ring (option "-k"). Last but not least, by the program dkg-addrevoker an external revocation key can be specified.
2018-09-13 - Karol Babioch <firstname.lastname@example.org> - Update to version 1.0.8: First of all, passive support for ECDSA, ECDH, and EdDSA (cf. RFC 6637 and Werner Koch's draft RFC 4880bis) has been added by relying on the most recent version of LibTMCG. The threshold signature scheme and the threshold encryption are still limited to finite field cryptography (i.e. DSA and ElGamal). Moreover, the programs generate and recognize a few other new OpenPGP features (e.g. issuer fingerprint subpackets) from RFC 4880bis. Compressed messages are now decompressed by the program dkg-decrypt using zlib Compression Library (and optionally by library routines from libbzip2). This completes DKGPG's compatibility with other OpenPGP software, however, the prefered compression algorithm (i.e. "no compression") in self-signatures of generated keys is kept for now. Support for symmetric-key decryption by dkg-decrypt has been added too. The program dkg-verify now reads the signature from a file, if option "-s" is used. To keep track of later protocol changes, all interactive programs include a version identifier in their common ID of the reliable broadcast channel. Thus programs from previous releases will not communicate with those of this release. With the new programs dkg-timestamp and dkg-timestamp-verify a OpenPGP timestamp signature can be generated and verified, respectively. Last but not least, by the new option "-y" some programs (dkg-generate, dkg-decrypt, dkg-sign, dkg-keysign, and dkg-timestamp) will work with regular OpenPGP keys too. The README file contains a configuration sample showing how to replace classic PGP by DKGPG in the famous mail user agent mutt based on this option. Please note that this feature is experimental and semantics may be changed later. - Added new build requirements: * zlib * bzip2
2018-07-09 - email@example.com - Update to 1.0.7: * Small improvments due to the new OpenPGP structures from libTMCG * "-k" option has been added to further programs * OpenPGP cleartext signatures can be generated with the "-t" option * Output of potentially malicious user IDs has been sanitized in dkg-keycheck, dkg-keyinfo, and dkg-keysign - Applied spec-cleaner
|dkimproxy-1.4.1-12.2.noarch.rpm||DKIMproxy is an SMTP-proxy that implements the DKIM and DomainKeys standards|
|dkms-2.6.1-1.2.noarch.rpm||Dynamic Kernel Module Support Framework|
|dleyna-connector-dbus-0.3.0-1.3.i586.rpm||dLeyna connector interface -- DBus|
|dleyna-connector-dbus-0.3.0-1.3.x86_64.rpm||dLeyna connector interface -- DBus|
|dleyna-core-devel-0.6.0-1.3.i586.rpm||Utility functions used by higher level dLeyna libraries -- Development files|
|dleyna-core-devel-0.6.0-1.3.x86_64.rpm||Utility functions used by higher level dLeyna libraries -- Development files|
|dleyna-renderer-0.6.0-1.3.i586.rpm||Discover and manipulate Digital Media Renderers|
|dleyna-renderer-0.6.0-1.3.x86_64.rpm||Discover and manipulate Digital Media Renderers|
|dleyna-renderer-devel-0.6.0-1.3.i586.rpm||Discover and manipulate Digital Media Renderers -- Development files|
|dleyna-renderer-devel-0.6.0-1.3.x86_64.rpm||Discover and manipulate Digital Media Renderers -- Development files|
|dleyna-server-0.6.0-2.3.i586.rpm||Discover and browse Digital Media Servers|
|dleyna-server-0.6.0-2.3.x86_64.rpm||Discover and browse Digital Media Servers|
|dleyna-server-devel-0.6.0-2.3.i586.rpm||Discover and manipulate Digital Media Renderers -- Development files|
|dleyna-server-devel-0.6.0-2.3.x86_64.rpm||Discover and manipulate Digital Media Renderers -- Development files|
|dm-zoned-tools-1.0.1-2.1.i586.rpm||"dm-zoned" device-mapper target manager|