Slashdot Mirror

← Back to Stories (view on slashdot.org)

Is Hushmail Still Safe?

Posted by Soulskill on from the possibly-good-protection dept.

Ringo Kamens writes to ask if the use of Hushmail can still be considered a secure method of communication: "For a long time, Hushmail was considered a very secure email provider until an affidavit (PDF) from a DEA agent in 2007 showed that they had handed over 12 CDs of possibly decrypted data to law enforcement. Now, Cryptome has posted that the Hushmail encryption program is no longer the same program for which Hushmail releases their source. Is Hushmail even safe to use anymore?"

9 of 264 comments (clear)

  1. Re:this has been the case all along by jjohnson · · Score: 4, Informative

    Generally yes, but Hushmail offered two methods of encrypting emails: on their servers and in a Java applet that did it locally. What came out during the earlier revelations was the company handed over email that they decrypted on their servers, but couldn't do so for the applet based encryption. They said up front that the applet was far more secure.

    --
    Anyone who loves or hates any language, platform, or manufacturer, doesn't know what they're talking about.
  2. Re:this has been the case all along by Naughty+Bob · · Score: 4, Informative

    you're probably better off encrypting your emails yourself instead of allowing a third party to convince you that they have encrypted it.

    RTFAs much? Hushmail provide you with an optional, open app to encrypt things before they leave your computer. But now it seems that (based on differing hashes) the code used 'in the field' is not the same as the reference source code they show on their site.

    I'd be inclined, given Hushmail's excellent track record on openness, to believe that this is more an oversight, i.e. something not updated, than a turn to the dark side.

    --
    "Be light, stinging, insolent and melancholy"
  3. Old News? by zifn4b · · Score: 4, Informative

    It appears that this was reported back in 2007 on The Register.

    There is indeed a clause in the clarified terms of service mentioned by the above article that states that your data is not safe from law enforcement authorities with a court order from Supreme Court of British Columbia, Canada:

    We are committed to the privacy of our users, and will absolutely not release user data without a court order from the Supreme Court of British Columbia, Canada, which is the jurisdiction where our servers are located. In addition, we require that any such court order refer specifically by email address to any account for which data is required. However, if we do receive such a court order, we are required to do everything in our power to comply with the law. Hushmail will not accept a court order issued by any authority or investigative agency other than the Supreme Court of British Columbia, Canada. Other authorities must apply to the Canadian government through an appropriate Mutual Legal Assistance Treaty and request that a court order be issued by the Supreme Court of British Columbia, Canada.

    --
    We'll make great pets
  4. The file is obfuscated by tkinnun0 · · Score: 5, Informative
    The jar-file is obfuscated, bringing its size down to 270KB from 485KB. The source code archive contains a file verification.txt with this text:

    For those who wish to verify that the class files downloaded when accessing
    Hushmail are genuine, they can be compared against class files compiled from
    source using the following tools.

    Sun JDK 1.5.0_05 for Windows
    Microsoft Java SDK 4.0
    Proguard 3.5 (http://proguard.sourceforge.net)

    Usage of these tools can be determined from the included Makefile and
    proguard.conf. Note that the signing steps in the Makefile cannot be
    accomplished, and so the class files must be compared individually. You cannot
    compare the entire archive.

    The Bouncy Castle Lightweight API Version 1.31
    can be downloaded here:

    http://www.bouncycastle.org/download/lcrypto-jdk11-131.tar.gz

    The archives used by Hushmail are located here:

    https://mailserver1.hushmail.com/shared/HushEncryptionEngine.cab
    https://mailserver1.hushmail.com/shared/HushEncryptionEngine.jar

    Please ensure that you are comparing the same versions. Sometimes the release
    of source code may lag a few days behind the update of Hushmail.

    Questions can be directed here: https://www.hushmail.com/contact

    I haven't done this verification, but neither has the cryptome author, so I suspect this is a non-story.

  5. Re:Simple Answer by icydog · · Score: 4, Informative

    The whole point of Hushmail's program is that you do it on a computer which you trust. They also offer a version where you send stuff to their servers in plaintext and then they encrypt it for you, which is harder to trust.

    The problem here is that the program doing the encrypting on your computer, which comes from Hushmail, is not the same program that they provide the (trustable) source code for.

  6. Mixmaster by trewornan · · Score: 4, Informative

    If you want encryption guaranteed against major governments you have to go with a one time pad. Even then you've got to worry about Van Eck Phreaking or FPGA eavesdropping.

    In general it's a bad idea to be confident in your encryption - if the Germans hadn't been so confident in Engima they might have done much better militarily.

    Any provider like this can ultimately be compelled to cooperate with security services and you've therefore got to assume they are working with major governments to compromise your communications. Common sense really.

    That said, something like Mixmaster is a good place to start. Makes it very difficult to be located by any legal process although (of course) it won't help if the NSA takes an interest.

    Hushmail? Compromised almost as soon as it was set up I'd wager.

  7. Re:no encryption that YOU didn't write is safe by Lincolnshire+Poacher · · Score: 4, Informative
    > where some genius commented some lines that were spouting a warning in GnuPG

    Point 1:

    No-one changed anything in GnuPG. Valgrind issued warnings regarding OpenSSL which resulted in some unfortunate changes in one distro of one OS.

    GnuPG and OpenSSL are entirely discrete projects, please don't confuse people with supposition and half-truths.

    Point 2:

    Neither you nor I can write a robust encryption algorithm. On the contrary, Rindjael and Twofish have been published in the wild now for eight years and no-one has demonstrated a weakness. If the former is acceptable as AES for US Government crypto then it is secure enough for the rest of us. Even if we assume that the NSA is 20 years ahead of the field in mathematics, if you're not dealing with the NSA then you've got 20 years lead time before Company-X can crack your files.

  8. Re:this has been the case all along by legirons · · Score: 5, Informative

    If you're encrypting email yourself then hushmail is just unnecessary. Use fireGPG with gmail and you've already got better privacy than hushmail (i.e. no need to trust their java applications)

    plus you get the entertainment of watching google struggle to choose adverts for your "----BEGIN PGP MESSAGE----" email

  9. Re:this has been the case all along by lord_sarpedon · · Score: 5, Informative

    Not if you use https://mail.google.com/ as your login page. Handy trick, but it should be the default.

    --
    "Strangers have the best candy" -Me