Slashdot Mirror

← Back to Stories (view on slashdot.org)

How To Enable Mom w/ Encrypted E-Mail?

Posted by Cliff on from the maintaining-the-illusion dept.

mad.frog asks: "Given the recent revelations of the Bush administration spying on US citizens without warrants -- and their promise to continue doing so -- it's clearly high time for me to switch to encrypted email, after years of being too lazy to bother. The real question is how I can get all (or at least some) of my email contacts to switch as well; clearly, encryption does me no good if the recipient can't decode it. What are my options, and more importantly, what are the options that will be comprehensible and usable by my parents, and in-laws? (Keep in mind that good solutions must include robust Windows and Mac support...)"

7 of 269 comments (clear)

  1. The best plaintext is encryption by Just+Some+Guy · · Score: 4, Insightful
    If a sizable portion of the population encrypted their email, then it wouldn't stand out, would it? And why do you assume he's wanting to "lay low"? Maybe he just wants to discuss private family business through private channels.

    I'll be darned if I'm going to live my life in fear that some TLA will mistake some perfectly innocent activity for terroristic proclivities. I only have control over my own mind - it's beyond my abilities to make someone else interpret my actions in the way I want.

    So, I'll keep encrypting the emails I send to my friends. I'll also keep locking my door and sealing my envelopes, even though I don't have any secrets the government would be interested in.

    --
    Dewey, what part of this looks like authorities should be involved?
  2. Re:mom? by Just+Some+Guy · · Score: 4, Insightful
    So what emails are you sending to mom that require encryption?

    Who cares? Do you write your letters on postcards or do you seal them inside an envelope?

    Maybe he has a nosy mailadmin. Maybe he doesn't want his kid sister reading mail meant for his parents. Some of us value our privacy, even though we don't have anything to hide.

    --
    Dewey, what part of this looks like authorities should be involved?
  3. Re:Don't bother by Malor · · Score: 4, Insightful
    If you give me six lines written
    by the most honest man, I will find
    something in them to hang him.

    --Cardinal Richelieu
  4. Re:Don't bother by Philip+K+Dickhead · · Score: 4, Insightful

    And then, you will be itting, like John Gilmore, on a no-fly list - maintained by secret laws that no American may know about, or make reasonable enquiry.

    Only, unlike Gilmore, you are probably not a multi-millionaire...

    --
    "Speaking the Truth in times of universal deceit is a revolutionary act." -- George Orwell
  5. Re:mom? by rusty0101 · · Score: 4, Insightful

    The problem with this argument is that the reason one puts messages in envelopes very rarely has anything to do with preventing the mail carrier from reading the contents of that letter.

    As a case in point, if you are sending a check, money order, or even cash to someone, most people use some sort of method of further obscuring the contents than simply putting it into an envelope. They pay extra for a box of 'Security' envelopes, printed on the inside with some pattern that makes it difficult to discern writing or printing. They wrap an additional piece of paper around the instruments. And so on. This doesn't happen in every case, but just about as often as not.

    It has also been long recognized that if you are sending mail to a country or person that someone has significant concerns about, that there are several ways of opening the envelope, or even extracting the letter from within the envelope without opening it. Read or copy the contents, then return the contents of the letter and send it on it's way.

    In a lot of cases the real reason for using an envelope has more to do with protecting the contents of the envelope from smudging or being separated than with preventing anyone from knowing what those contents are. If you are paying a bill, you use an envelope to keep the check and the bill stub together so that the people being paid have some idea of what the check is for.

    If you get a multi-page letter from Aunt May, she is more likely to be trying to keep the pages together and in order than otherwise. If you are traveling, you very probably do send post cards, often with a picture of where you are, and a brief note wishing the recipient were along for the trip. An interested party may glean far more from a brief glance at the picture than by reading pages of text.

    Note that there are a couple of elements of the above that do make sense when related to encrypting or digitally signing the e-mail that you send. For all practical purposes the e-mail that you send is a single page document. Even if you print it to 100 pages of a single spaced double sided 6 point font as far as the e-mail handling software is concerned, it doesn't matter if the message is zero bytes, or a couple million bytes. If the parts are not all put together correctly at the far end, an error is logged, and the system trys to fix the situation. Likewise the system is mostly proof against smudging or error introduction to the body of the message, as it is being handled by a TCP connection. That does not prevent changes to the headers, nor does it prevent an alteration by a malicious server in the middle. Encrypting or signing the contents does reduce the likelyhood that a change to the contents will be noticed. (Though it does nothing for the headers, including the subject.)

    Of course the above is a rather simplistic explanation, and there are other elements involved.

    -Rusty

    --
    You never know...
  6. Re:Ah... by The+AtomicPunk · · Score: 4, Insightful

    Terrorist.

    Fighting the drug dealers was the excuse in the 80s. In the 90s it was saving the children. Now it's fighting terrorism. Please, keep up to date on the latest doublespeak - otherwise it's harder for the government to strip us of our rights.

  7. Re:I hope you know by Glonoinha · · Score: 4, Insightful

    That is ridiculous, and does not follow.
    Actually it is pretty simple.

    As far as most of us know, cracking RSA (and DES, and all the 'good' encryption) can be done, but it can only be done via brute force (ie, trying different keys until one is found that works.) There is a little more to it than that, but lets just say it is incredibly time and processor intensive. Just like SETI.

    One of three things has happened at the NSA, you can pretty well bet :
    1. Every year computers get twice as fast, for free.
    2. The can add more machines without removing the old ones, (thing Beowulf.)
    3. They came up with an algorythm that is faster than brute force, but haven't let on.

    That third one is the most scary - it is like when the Enigma was cracked. No longer did it take brute force ... they just applied their 'crack' and cranked out the answers. Even if it hasn't happened, the combination of 1 and 2 mean that anything that takes brute force doesn't necessarily take a lot of time. Heck, my home Beowulf can outrun the $5.5M Cray mainframe AND the $150,000 IBM cluster that matched it back in 1999, on the same benchmark (skyvase.pov)

    RSA / DES keeps the honest people honest, and it keeps the first level bad people honest - but the days of keeping the hardcore bad guys honest are pretty much over.

    And yes, I mean the gvmt.

    --
    Glonoinha the MebiByte Slayer