Unable to Decrypt in Latest GPG4Win withIntegrityCheck=false

[Matt Hull]

I am unable to decrypt any files in the latest version of GPG4Win (3.1.2) that I encrypt via DidiSoftPGP if I specify "withIntegrityCheck=false".  These same files can be decrypted on an older version of GPG4Win (1.1.4), even with the integrity check disabled. When I try on the latest version, the decryption always fails. The message indicates that "The file XXX contained no valid encrypted data".

I can decrypt the same files with GoAnywhereOpenPGP using either integrity check value. 

I am not sure if this is a bug in DidiSoft or if this is a bug in GPG4Win.

Thanks,

Matt Hull

[DidiSoft Support]

Hi Matt,

Indeed this is a standard behavior as of GnuPG version 2.2.8.

An excerpt from the GnuPG release notes states that:

Noteworthy changes in version 2.2.8
===================================

  * gpg: Decryption of messages not using the MDC mode will now lead
    to a hard failure even if a legacy cipher algorithm was used.  The
    option --ignore-mdc-error can be used to turn this failure into a
    warning.  Take care: Never use that option unconditionally or
    without a prior warning.

  * gpg: The MDC encryption mode is now always used regardless of the
    cipher algorithm or any preferences.  For testing --rfc2440 can be
    used to create a message without an MDC.

Source:
https://lists.gnupg.org/pipermail/gnupg-announce/2018q2/000425.html

The conclusion is that if you need to exchange encrypted or signed and encrypted data with systems based on GnuPG 2.2.8 and later withIntgerityCheck must now always be true!

Kind Regards
Peter Kalef
Technical Support
DidiSoft Inc | Phone: +1-256-907-7816 | Fax: +1-256-907-7816 | Web: www.didisoft.com

--
You received this message because you are subscribed to the Google Groups "DidiSoft Forum" group.
To unsubscribe from this group and stop receiving emails from it, send an email to didisoft_foru...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.