# WispPGP 1.6 - Multi-recipient encryption ## Included in 1.6 - **Multi-recipient encryption**: Encrypt one message to multiple public keys at once. - **One standard PGP message**: The encrypted output remains a single ASCII-armored `-----BEGIN PGP MESSAGE-----` block, compatible with OpenPGP clients. - **Existing decrypt flow**: Any recipient with a matching private key can decrypt the same message. - **Recipient selection**: The main app and Share Extension now support selecting more than one public key before encrypting. - **Security checks**: Revoked or unusable recipient keys are blocked before encryption, and duplicate recipients are deduplicated by key fingerprint. - **Versioning**: App and Share Extension are aligned to version `1.6` build `20`.

## Included in 1.5.1 - **Key Management layout spacing**: Added/standardized outer content margins in the key management interface for better readability and touch ergonomics.

# WispPGP 1.5 — Integrated Release (1.2 → 1.5) WispPGP 1.5 is the integrated milestone release that combines all major improvements delivered across versions 1.2 through 1.5 into one cohesive privacy and security experience. ## Security and Trust WispPGP now provides a stronger trust model across the app: - Public keys can be managed with clearer trust and revocation context. - Revoked keys are blocked where security-sensitive actions happen. - Recipient safety scoring is surfaced with practical next-step guidance to reduce operator mistakes. - Security guidance is centralized in Security Center, including setup progress and actionable recommendations. ## Verify and Reporting Signature verification is now more guided and auditable: - Verify uses a clearer flow with stronger signer-context awareness. - Verification outcomes can be exported as structured reports. - Report export is designed around metadata-only safety principles. - Result visibility and warning consistency were improved for revoked/unverified scenarios. ## Key Management and Backup Key lifecycle management has been expanded and hardened: - Better handling of contacts, preferred keys, revocation, and rotation guidance. - Encrypted vault backup/restore workflows are integrated into key management. - Backup and export actions align with stricter protection behavior. - Large key-management flows are easier to navigate and more explicit in intent. ## Audit and Privacy WispPGP now includes a local audit timeline for operational visibility: - Metadata-only event history for key and verification related operations. - Filtering, export, and clear controls for privacy-aware auditing. - No plaintext message content is stored in timeline records. ## UX and Settings Redesign Settings and support surfaces were reworked for clarity: - New Settings architecture with clearer domain grouping and less cognitive load. - Security Center is now the main location for security posture and setup guidance. - Help & Support was expanded with practical in-app guidance. - Maintenance and safety checks are more discoverable and easier to interpret. - Interaction consistency improved across Settings subpages. ## Visit Card and Share Experience Landscape identity/visit card workflows were polished: - Better scanability and sharing ergonomics. - Improved clarity around identity QR and openpgp4fpr behavior. - Better resilience in edge cases and feedback states. ## Localization and Quality - Localization coverage was expanded and refined across newly introduced flows. - Labels and microcopy were improved for readability and consistency. - Multiple reliability and UX regressions were addressed throughout this release line. ---

# WispPGP 1.2 — QR, scanner & landscape visit card **Tip:** When you **rotate the iPhone or iPad to landscape** (long edge horizontal), the app shows a full-screen **visit card** instead of the usual tab bar. Rotate back to **portrait** for Encrypt / Decrypt / Sign / Verify / Settings. ## Public key QR (Key Management) - **openpgp4fpr QR**: From key details, open **Public key QR** to show a QR code whose payload is the **`openpgp4fpr:`** URI (OpenPGP v4 fingerprint)—same standard as keyserver-oriented sharing. - **Copy & share**: Copy the **URI** or the **QR as an image** to the clipboard, use the system **Share** sheet, and read short guidance about keyservers (e.g. keys.openpgp.org). - **Monospaced URI** on screen with text selection for manual copying. ## Scan QR (import fingerprint) - **Scan QR** in Key Management uses the **camera** (VisionKit `DataScanner` where supported) to read a QR payload. - Valid payloads are **`openpgp4fpr:`** URIs; the fingerprint is queued for import in Key Management. Invalid codes show a clear error. - On unsupported devices or without camera access, the app explains the limitation. ## Landscape visit card (identity) - **How you get there**: **Turn the device to landscape orientation**—the main UI is replaced by a single full-screen **visit card** (fingerprint identity + QR). This is **only** in landscape; it is not shown in portrait. - **Landscape-only UI**: The tab bar and tab content are hidden; **portrait** restores the normal tabs and all features as before. - **Same openpgp4fpr idea**: The card’s QR encodes **`openpgp4fpr:`** for the identity of your **currently selected private key**. - **Public key first**: If a **public** key with the same OpenPGP key ID exists in the vault, that material is used (no biometric prompt). Otherwise the **private** key is used (Face ID / Touch ID when required). - **Layout**: Wide landscape card—accent strip, **headline** (prefers the **public key’s name**, else the **private key’s name**, else “Active private key”), `openpgp4fpr` label, URI, optional user ID, QR on the side. - **Save to Photos**: Button to save the visit card **as an image**; iOS may ask once for **photo library add** permission (`NSPhotoLibraryAddUsageDescription`). - **Placeholders**: Clear messages if there are no keys, nothing selected, unlock cancelled, read errors, or fingerprint issues—no empty card. ## Localization & permissions - Strings for QR flows, scanning, landscape card, save actions, and photo access are covered across **all supported app languages**. Camera use for scanning is described in `NSCameraUsageDescription`. ## Technical - QR bitmap generation supports multiple **error-correction levels** where useful for reliable encoding of `openpgp4fpr` payloads.

Performance improvements and review screen

# WispPGP 1.1: The "We Actually Made it Pretty" Edition Welcome to version 1.1. We've been busier than a cryptographer in a room full of enigmas. Here's what's new in your favorite digital whisperer. ## Finding People (Who Actually Want to be Found) - **Deep Web Sleuthing**: You can now scour keys.openpgp.org for your friends, enemies, or that one cousin who insists on sending encrypted holiday cards. Search by email, Key ID, or Fingerprint. It’s like Tinder, but for people who really care about prime numbers. - **Auto-Verification Magic**: Uploaded a key? We’ll nag the keyserver to send you a verification email immediately. Check your inbox—it’s the one between the "Enlarge your encryption" spam and the "Meeting that could have been an email" invite. ## Professional Facelift (Bye-bye, Ugly Buttons) - **Grid-locked no more**: We threw the old button layout into a shredder. Our new Icon-Only Action Bar is so sleek it practically glides. It’s compact, mysterious, and saves enough screen space for you to contemplate your life choices. - **Card Royale**: The Upload and Search screens have been upgraded to "Premium Card Status." Every key now gets its own little shadow-lifted home. It’s basically a Five-Star hotel for your public keys. ## Security Paranoia Upgrades - **Size Matters**: When generating keys, you now have choices. Go old school with RSA (up to 4096 bits!) or stay modern with ECC. It’s like choosing between a Sherman tank and a stealth drone. - **Face ID Ninja**: Successful Face ID logs now instantly vanish the "I'm watching you" lock screen. Less waiting, more encrypting. - **Copycat Detection**: Trying to add the same key twice? Nice try. Our app now politely (but firmly) tells you to stop being a duplicate-addict. ## The Universal Translator - **Total Menu Localization**: We realized "Rename" and "Export" look weird in a Dutch menu. Now the context menus finally speak your language. No more digital "Double Dutch." - **Bug Squashing**: We found a duplicate "Search" key in the Dutch translation. Apparently, we were just really eager for you to find things. It's gone now. ## Miscellaneous Nautical Nonsense - **Build Number 12**: Because 10 was so yesterday. - **Clipboard Ghosting**: More ways to auto-clear your secrets so the next person who borrows your phone doesn't see your master plan for world domination. **Stay safe, stay secret, and stop using "password123".**