I find it hard to believe they provide the public key, they must know how to decrypt one no?
-
-
-
Could be the user on the MSRC-side forgot how, not sure if it's automated on their side
- 1 more reply
New conversation -
-
-
My biggest takeaway from doing coordinated vulnerability disclosure for VENOM was that there's no hope for use of PGP in the real world.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Our future plans for pre-disclosure CVD involve a web portal. HTTPS is a much better user experience. But we'll need an API to support non-human interaction.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
It's automated. I'll ping the team and see if we can unblock this.
-
Our PGP tools are ancient and there are many, many different and incompatible ways to programmatically create and process PGP mail. We've communicated with MSRC successfully in the past, we'll get it worked out.
End of conversation
New conversation -
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
