Slashdot Mirror
Silent Circle, Lavabit Unite For 'Dark Mail' Encrypted Email Project
angry tapir writes "Two privacy-focused email providers have launched the Dark Mail Alliance, a project to engineer an email system with robust defenses against spying. Silent Circle and Lavabit abruptly halted their encrypted email services in August, saying they could no longer guarantee email would remain private after court actions against Lavabit, reportedly an email provider for NSA leaker Edward Snowden."
The /. Page says, "There are no comments." Well, duh, they're encrypted so the browser doesn't recognize them.
It's been around for what, 40 years? Working, (relatively) anonymous, and totally insecure mail transfer with tons of inertia. Never thought I'd see the day where there might be a small sliver of opportunity for another protocol to actually happen. Ars has a nice article about it too.
I believe it was 2 days ago that I mentioned Lavabit would start a new project with self-signed or otherwise decentralized peer to peer encrypted e-mail with their newfound publicity. Tada, here it is.
i2p mail.
This one with security/encryption built in from the ground up this time. Would be more interesting that instead of the comments of Microsoft (with deep ties with the NSA), yahoo and google (both may not be very happy with the NSA, but still must give them their users accounts info by law) the article focused on comments from people from i.e. the IETF for implementing it as an standard in a more worldwide (even personal) way.
Excellent. If they end up accepting Bitcoin (and have sufficient respect for FOSS) then I'll certainly sign up for a premium/professional account.
The whole paradigm of certificate trust, and the fact that you just have to trust Root CAs, is a farcical model of security.
We should all be aware by now that the Root CAs we all know and trust are compromised by NSA and that they can MITM any SSL connection they want at any time.
Until we can move beyond this whole third party certificate trust issue, there will never, EVER be truly secure email.
It's a good thing that they already have a theme song.
Looks SCIMP does not prevent an attacker from seeing when, to/from whom, and how much is beeing sent. I2P-Bote seems a lot better.
When I first saw the Snowden-film from Hong Kong I thought: "damn! he has forfeited his life and nobody will care. And now this! Not only has he shaken the political world-society, he has also aroused the tech-world and made it possible to make some major changes. Hope I will be running this new protocol by next year and be able to send super-secret Christmas-cards to the select few who is also using it!
I didn't expect to get modded up - but Ladar's not the white knight that's being presented in the media (if anyone would actually read the documents and see he bought it on himself), and I'm damn tired of it.
"I can't give you a brain, so I'll give you a diploma" - The Great Oz (blatently stolen sig)
SCIMP provides strong encryption, perfect forward secrecy and message authentication.Further, we have incorporated many NIST-approved methods and protocols into its design including:
Does anyone else see a problem with with the wording "NIST-approved methods and protocols?" NIST/NSA
Why call it Dark-Mail? Grandma should be able to use... Dark Mail? Like she was a Sith-lord. What about PBP Pretty Better Privacy?
In other news, open source community takes another swing at Privacy Enhanced Mail, but this time with no trust anchor ...
I'm still not convinced that anonymity and accountability can coexist. At the very least, they need their servers to be accountable for the anonymity assurances given to their users.
That can't be solved by using PGP?
I'm sure I'm missing something, but what? ;)
Call it CONFIDENTIAL Mail, not "Dark Mail"!
/. please update, iteratively over time. Thank you.
Many outlets in the right wing media will have a field day with the name alone.
If one is going to try to occupy the moral high ground the choice of language really matters: you are framing the debate by how you word every single relevant item related to a given project, and which item will have greater visibility than the very name of your project?
By using such a name they are serving in a silver plate the opportunity to malicious, uninformed and naive commentators to badmouth whatever they come up with and that before having put forward a single detailed sentence about the proposal.
DarkMail may sound cool, but from the start is eliciting all the wrong kind of associations, I am sure many parties in the field could be interested to join such an effort, but the DarkMail name alone may put some people off.
The name really should be changed, these battles are difficult as it is, people shouldn't make it unnecessarily harder than it is going to be.
Let me put an example, lets compare these 2 headlines:
"Terrorists confess to using DarkMail"
and
"Terrorists confess to using PrivateMail"
Look, at the end I know it is the same thing, but while a headline would push many to say "yeah, tell me something new" the other may elicit comments of the kind of "What? That is what I use to email my bank"
I really think that name ought to go.
IANAL but write like a drunk one.
When I thought about this problem, if you really want to hide the from/to, you need a third party intermediary. If you want to handle encryption of the subject and message, then a design that leverages P2P would be pretty adequate and acts like a plugin for your favorite mail client. It operates on a two part design, but it is easier to describe from the recipients point of view. When you receive an encrypted message it comes with a key. When you enter the passphrase for that key, it tells you how to retrieve the actual decryption key from the P2P network. The reason is that the key was broken into randomly sized packets, reordered, and dispersed. That key tells you how to retrieve those pieces and how to reorder them. There should be certain amount of overlap in the packets so that if one or two of the packets are missing, the message can still be recovered (this feature would be selectable option per the key that it came with).
It's going to be called 'LavaCircle'.
And then mistyping the domain will get you a date on LaveLife. ;-) That should be enough to confuse the NSA. "Hey Bob! PRISM is reporting an uptick in traffic for LavaLife. Are you flirting with the secretarial pool over at DoD again?
CAPTCHA: misleads
In p 31 he is asked to hand over the SSL and TLS keys for his service, which in practical terms it would allow the FBI to eavesdrop in the communications of *everybody* at will, this with all certainty would have meant a breach of contract with his users, lawsuits would have ensued. Would the FBI have paid for the damages?
Most importantly Lavabit was willing to comply with the original request, which was limited to a single email account.
You'll have to try harder if you want to dispel the positive aura around Ladar..
IANAL but write like a drunk one.
Bitmessage: P2P, encrypted, anonymous. The project is pretty new, but other than a couple scalability issues, I think this project has major potential. http://bitmessage.org/
When I run that sim, as you suggest, the outcome I see is that you have the wrong key for someone's email address. You get MitMed.
(And in spite of the fact that you're being MitM, passive parties who are not involved in the attack, are still locked out. e.g. If the NSA MitMs your email to your wife, other observers are still seeing ciphertext, not plaintext.)
You're no worse off than if you hadn't ever encrypted; i.e. better than the status quo for 99% of users.
Furthermore, if you ever meet the person you emailed, or ever meet someone they met, and start to actually check and sign fingerprints, thereby creating WoT links, then the original attack eventually gets discovered ("Hey, I had a bogus wrong key on file for you. What happened?").
It looks like a decent situation, and an unambiguous upgrade from what people currently do. Can you find any downsides?
"Believe me!" -- Donald Trump
So what makes this situation any different than the previous products they offered? What keeps the NSA from threatening them over this issue?
The only way to prevent the NSA or any other overeaching government agency or corporation from getting teir hands on the data is for an Anonymous client to be established, that way the NSA won't know who to go after.
How is this different than what Mailpile is trying to do?
Congrats: your sentence is thoroughly encrypted!
You are mistaken. PGP has more is better thing going on. It does scale (more participants = stronger), and that's why governments don't want you to use it.
Do the math on the probabilities.
And if someone encourages you to move away from looking at probabilities? Good: you've just spotted the fed.
It's a good concept, but it is based in the US, which means that a) it'll run into the same issues again and b) nobody outside and few inside the US will trust it.
What they need are partners in other jurisdictions. At least one in Europe and one in Asia. A carefully designed corporate structure can delay any legal attacks for long enough for at least one of the nodes to inform its users and shift them towards a node not under attack.
Why do we geeks always think the solution must be technical? Social and legal protocols are equally important, and can solve many problems that are much more difficult to solve by technology.
Take a page out of the book of megacorporations. Set up a mother company in a country with all the laws you need and make the operation the legal property of that, so that you can deflect any legal attacks by claiming your local subsidary doesn't have the legal authority nor the passwords required to do what you want them to do, but you will be happy to forward it to the mother company - which is in a jurisdiction where the gag order doesn't apply.
Get a lawyer on board who can figure these things out. There are plenty of lawyers interested in this kind of stuff. And if you need contacts in Europe, send me a mail. I kind of miss the good feeling I had back when I was running an anonymous remailer.
Assorted stuff I do sometimes: Lemuria.org
Are they doing this to avoid being prosecuted by the US government?
Someone check me on this, this sounds just like gpg/pgp that is available already and holds the keys in the same place. Did I miss something here, comments: