Slashdot Mirror
Chaos Computer Club, Others Scoff At German Email Security Move As "Marketing"
The move on the part of three large German ISPs to provide more secure email, marketed as "Email made in Germany" (Deutsche Telekom's part specifically was mentioned here yesterday), has drawn sharp criticism from security experts, according to a report at Ars. Among those experts are members of the Chaos Computing Club, and GPGMail lead Lukas Pitschl, who responded to the move from Deutsche Telekom, GMX, and Web.de to encrypt all email in transmission with SMTP TLS : "'If you really want to protect your e-mails from prying eyes, use OpenPGP or S/MIME on your own desktop and don't let a third-party provider have your data,' he told Ars. 'No one of the "E-Mail made in Germany" initiative would say if they encrypt the data on their servers so they don't have access to it, which they probably don't and thus the government could force them to let them access it.'"
What then?
http://michaelsmith.id.au
It's a start, at least the passwords are safe... there's a tendency for security communities to scoff at nearly any half improvement
When public key encryption first came out in the late 70s, the promise was we would all have escrowed public keys. A public key would be linked to an e-mail address in the same way a DNS server connects a URL to an IP. I woul dnot need to know your public key ahead of time, my e-mail client would quietly fetch it for me using your e-mail address, and then encrypt the message.
So basically by now all e-mail should be encrypted by default if the future had panned out the way everyone thought in 1976.
All that's missing is ubiquitious public key servers and a universal protocol for binding a key to an e-mail. We do this a zillion times a day for DNS, so it's not technologically difficult.
Why didn't it happen?
Some drink at the fountain of knowledge. Others just gargle.
It's too bad in some sense that the Bundesliga is so famous it would be prohibitively expensive for PBS to bring back "Soccer Made in Germany."
Anyone with half a brain is aware that people lie. People are even more likely to lie if there are no consequences.
Feel free to point out to me that people in law enforcement (or those affiliated with law enforcement) have little to no consequences for doing so, and often receive benefits for doing so if it coincides with the objectives of their superiors.
Once upon a time, I would have objected that people who lie routinely have something to hide. Now I just point out that said people typically work for the government.
Apparently even Phil Zimmerman himself doesn't use PGP because the UI sucks so hard.
http://www.forbes.com/sites/parmyolson/2013/08/09/e-mails-big-privacy-problem-qa-with-silent-circle-co-founder-phil-zimmermann/3/
When people send me PGP encrypted mail I have to go through a lot of trouble to decrypt it. If it’s coming form a stranger, I’ll say please re-send this in plain text, which probably raises their eyebrows.
as simple as ABC, baby you and me.
Of course encrypt with START TLS but it has nothing to do with gpg/pgp.
-[PinePGP Sun Aug 11 03:08:56 EDT 2013]-------------------
gpg: Signature made Sun Aug 11 03:08:37 2013 EDT using DSA key ID 5BA0D409
gpg: Good signature from ""
--[PinePGP Sun Aug 11 03:08:56 EDT 2013]------------[end]--
Everything I write is lies, read between the lines.
Once upon a time I became paranoidal about my mail security. It took me about 1 hour to install my own mail server with encryption. Then I sent myself a letter via my ISP. And logs had shown that the transmission was really encrypted.
What does it mean: There are the only paths that can be passively intercepted or subpoenaed (I don't take in account MITM): SMTP link from sender to source SMTP server, SMTP link from sender to backup SMTP server, SMTP link to receiving server, POP link from receiving server to receiver and all the computers involved. Sender side may be controlled by sending person, receiver side controlled by receiving person, backup disabled in DNS, so the 3-letter agency will not see anything without special means.
Hack methods: 1) Hack a DNS to insert a backup server and see the message there. 2) Extort the message from any side.
I believe it's enough for 99% of all cases. Other 1% will need something more interesting, and I believe that the "more interesting" cases should not only encrypt the messages, but firstly hide the fact of communications since the messages may be extorted easier than decrypted. In other words, TOR, I2P, VPN and other means for hiding the very fact of communication are absolutely needed.
I think somebody missed the point. So what if it's "marketing"? IF THIS WERE NOT A PROBLEM, THERE WOULD BE NO "MARKETING" POINT TO SELL.
I mean, sheesh, people. Talk about missing the forest for the trees.
I think GPG is a safer bet because it's easy to create a key (btw it doesn't stop CAs selling signed keys if they wished). But at the same time, very few people are going to go to the effort and the ubquity of webmail means many people can't use it without a plugin or whatever.
I think the best chance of crypto becoming prevalent is for some major zone (e.g. the EU) to require browsers to implement a cryptographic framework exposed from JS so that crypto happens client side, and mandate that all webmail destined for government contracts support it. The client side crypto could be OpenPGP compatible to ensure that users can easily create keys and exchange them.
Of course the likes of Mozilla / Google / Microsoft should be proactively stepping up and providing a specification and implementation of this. If they can produce a spec for DRM extensions in browsers, then surely they can do the same for crypto.
Maybe a little offtopic, but I for one have found serious dearth of decent email clients. Is Thunderbird the only option that actually does everything and doesn't look like shit ?
Oh wait, it just upgraded to 17.0 and looks like shit now too.
Entia non sunt multiplicanda praeter necessitatem.
So we have PGP to encrypt the contents of an eMail and TLS to encrypt the envelope while the mail is in flight.
If we wanted to, we could further reduce the amount of information known to the servers.
The sending and relaying servers don't need to known the mailbox at the destination. All they need to know is the server.
So we could implement a scheme where the sender uses an asymmetric key of the destination server to encrypt the name of the destination mailbox.
The best part of this is, that it can be implemented transparent to sending and relaying servers. They just see a slightly longer eMail address consisting of random characters and maybe a magic string to identify the scheme. The same goes for the key fingerprint of the receiver stored inside the PGP encrypted mail.
This can be encrypted as well using the destination server key.
The other information we can drop is the sender envelope address. This is just used to enforce policies of who may send emails to the destination.
The sending server can use SMTP AUTH to know the sender is allowed to use the server.
The destination can use the PGP signature inside the encrypted mail to decide if the mail should be thrown away.
There are several options to implement this. Either SMTP is changed to make "MAIL FROM" optional or a specific address is used.
Servers should check if the contents uses PGP. I don't know if it is possible to tell from the encrypted contents if it is signed as well.
If there was a Gmail clone right now that used encryption, all the way through, so they did not know what I was emailing any more than they knew my password, I would use it.
And they could even make it possible for you to send non users encrypted emails that have a few ways of being decrypted.
1. Open up an EcrypMail account. Its free and easy.
OR
2. Download this software and set it up like this.
etc
Troll is not a replacement for I disagree.
T-Mobile teams up with Google to provide secure "Made in America" email service.
You have 2 alternatives: either use UI that sucks - or to be incarcerated in FSB due to contents of your letter. Your choice?
Well, it's 2013 and they were talking plain text all this time?
And by the way: GMX/WEB.de aka "United Internet" has a data center in the Cansas.
That's /one/ alternative.
Part of the problem is he's using Symantec's PGP rather than the OSX build of GnuPG. And considering that the original version that HE created was command line only, he should know that to decrypt something sent to him, all he needs is his own private key. I mean, after all, he's Phil Zimmerman, doesn't he have his key?
Their e-mail is safe from the U.S. government, but not from the German government.
So the question is, who do you trust? Which government is most likely to use a court order to get decryption keys for your e-mail? A government can usually only do that in its own country, not a foreign one. If your mail is of interest to the U.S. government, chances are it is not so interesting to Germans. And vice versa.
Use a mail provider in a country other than your own.
Put the key serve url in the Subject. enigmail doesn't encrypt the Subject. Then the receipiant can look up your public key. This could all be handled by the email client.