Hello Sequoia Developers,
I am aware that some of the Sequoia PGP developers used to be GNUPG
developers.
Would these ex-GNUPG developers say the GNUPG developers are still
trustworthy to protect our privacy?
I admit I still use GNUPG in the command line just for now and am hoping
to be able to use Sequoia-PGP in the near future.
In the meantime I wonder what the direction of both GNUPG and Sequoia
will be.
Please let me know your thoughts.
Best,
Tanveer Salim
Hi,
On Sat, 06 Sep 2025 23:47:24 +0200, Tanveer Salim wrote:
I am aware that some of the Sequoia PGP developers used to be GNUPG
developers.
Would these ex-GNUPG developers say the GNUPG developers are still
trustworthy to protect our privacy?
I covered this in my FOSDEM presentation last year:
https://archive.fosdem.org/2024/schedule/event/fosdem-2024-3297-sequoia-pgp-...
(I mention this not expecting you to have watched it, but as a source of additional information.)
The reason for the split was a technical one. We had some ideas on how to improve GnuPG to make it more secure, more robust and more usable. Werner did not agree with those ideas, and asked us not to work on them, which was his right as our employer. We decided that we wanted to try out our ideas anyway. So we quit and started a new project. Unfortunately, Werner did not take this decision well, and one consequence is that he no longer partcipates in the broader OpenPGP ecosystem. For instance, he has developped his own specification, which is incompatible with the OpenPGP standard.
With respect to privacy, Werner is completely trustworthy.
:) Neal
Hi Neal,
Thanks for this honest answer.
Appreciate it!
Best,
Tanveer Salim
On 9/8/25 02:14, Neal H. Walfield wrote:
Hi,
On Sat, 06 Sep 2025 23:47:24 +0200, Tanveer Salim wrote:
I am aware that some of the Sequoia PGP developers used to be GNUPG
developers.
Would these ex-GNUPG developers say the GNUPG developers are still
trustworthy to protect our privacy?
I covered this in my FOSDEM presentation last year:
https://archive.fosdem.org/2024/schedule/event/fosdem-2024-3297-sequoia-pgp-...
(I mention this not expecting you to have watched it, but as a source of additional information.)
The reason for the split was a technical one. We had some ideas on how to improve GnuPG to make it more secure, more robust and more usable. Werner did not agree with those ideas, and asked us not to work on them, which was his right as our employer. We decided that we wanted to try out our ideas anyway. So we quit and started a new project. Unfortunately, Werner did not take this decision well, and one consequence is that he no longer partcipates in the broader OpenPGP ecosystem. For instance, he has developped his own specification, which is incompatible with the OpenPGP standard.
With respect to privacy, Werner is completely trustworthy.
:) Neal
-
Neal H. Walfield -
Tanveer Salim