Slashdot Mirror

← Back to Stories (view on slashdot.org)

A Year After Snowden's Disclosures, EFF, FSF Want You To Fight Surveillance

Posted by timothy on from the why-make-it-easy-for-'em? dept.

Today, as the EFF notes, marks one year from Edward Snowden's first document leaks, and the group is using that as a good spur to install free software intended to make it harder for anyone (the NSA is certainly not the first, and arguably far from the worst) to spy on your electronic communications. Nowadays, that means nearly everything besides face-to-face communication, or paper shipped through the world's postal systems. Reader gnujoshua (540710) highlights one of the options: 'The FSF has published a (rather beautiful) infographic and guide to encrypting your email using GnuPG. In their blog post announcing the guide they write: "One year ago today, an NSA contractor named Edward Snowden went public with his history-changing revelations about the NSA's massive system of indiscriminate surveillance. Today the FSF is releasing Email Self-Defense, a guide to personal email encryption to help everyone, including beginners, make the NSA's job a little harder.'" Serendipitous timing: a year and a day ago, we mentioned a UN report that made explicit the seemingly obvious truth that undue government surveillance, besides being an affront in itself, chills free speech. (Edward Snowden agrees.)

76 of 108 comments (clear)

  1. Pissed Roast by Anonymous Coward · · Score: 1

    Some decent tools on their site.

  2. Today's Vancouver Sun says Canada spying on them by WillAffleckUW · · Score: 2

    So, it's not just the US spying on Americans in America, it's apparently Canadians spying on Canadians in Canada.

    --
    -- Tigger warning: This post may contain tiggers! --
  3. No point encrypting if you're the only one... by nine-times · · Score: 5, Insightful

    There's no point in encrypting your email with something like GPG if you're the only one using it, and most people aren't going to use it until it's easy.

    I know, you'll tell me it's easy. Just download this software, install it, and it'll work for your email client assume you're still using an email client and there's a plugin available for it, which there might not be. Otherwise you need to copy and paste and stuff, and... oh right, then there's also the whole issue of managing keys and keeping a backup copy safe. Most people don't back anything up.

    You have to make it easy. Someone will get angry because I appear to be praising Apple, but take iMessage's encryption for example. Do people using it know that their messages are encrypted? Probably not. Are they given a choice? No. Do they know that they're generating encryption keys? Probably not. Are they asked to manage their own encryption keys? No.

    That's easy. GPG isn't. Email encryption needs to be that easy, or people won't use it.

    1. Re:No point encrypting if you're the only one... by PRMan · · Score: 4, Informative

      Gmail is working on it. And they're trying to get other e-mail providers onboard.

      --
      Peter predicted that you would "deliberately forget" creation 2000 years ago...
    2. Re:No point encrypting if you're the only one... by Anonymous Coward · · Score: 1

      I didn't know that either. Good information! Yeah, I've noticed the same thing with PGP encryption. No one wants to pay much attention to it and few people will go through the small amount of effort to encrypt their emails. I think the issue is people think either 1) it seems suspicious or 2) they don't care if the government (who they think are the only entity who can spy on people) reads their emails.

      I think what should be emphasized is that anyone given a fair amount of technological sophistication can spy on your information. As we get to the future, the potential for holes that are currently unknown being found by more people gets higher and there may be a time when anyone can download a prewritten program that will open up hundreds of thousands of users emails and there'll be nothing anyone can do. Once it's released, it's tough to unreleased.

      Also, there's the supposed mind-control that's being used by government(s) and secret organization(s) that manipulate people into ignoring security through techno-psychological manipulation. The same stuff that's being used to get people to ignore it and think it's just conspiracy (and even go as far as manipulating people into accusing others of being stupid -- all in order to defend the manipulation system set in place).

    3. Re:No point encrypting if you're the only one... by mcelrath · · Score: 2

      I've been using GPG for more than a decade, but in recent years I've stopped signing my messages because it often trips up poorly-configured spam filters. That, combined with the fact that you can't be certain that the recipient has received or read a message makes using GPG (and potentially losing your email) risky.

      While "read receipts" exist in many proprietary formats, we need it to be standardized and deployed globally. Hey, let's use our GPG keys to do it?

      --
      1^2=1; (-1)^2=1; 1^2=(-1)^2; 1=-1; 1=0.
    4. Re:No point encrypting if you're the only one... by McDutchie · · Score: 2

      This argument hasn't changed in twenty years, in spite of massive improvements in ease of use. Apparently, it's impossible to make it "easy enough" for the average user. I think this means ease of use actually has very little to do with the problem. The problem is with the average user's priorities. People value convenience more highly than privacy, and as long as people don't change those values, encryption will never take on. Typically people will only change their priorities under threat of dire and immediate consequences for them personally. Everyone will lock their door so they don't get burglarised. But email privacy is too abstract and invisible still. It's going to take some huge cases of identity theft, with real monetary loss, to get people to change â" and then people will probably sooner abandon email than use email encryption. Finally, the kind of convenience that you propose necessarily will render the whole thing insecure. Letting strangers (like Google) manage your private keys defeats the whole purpose.

    5. Re:No point encrypting if you're the only one... by Anonymous Coward · · Score: 1

      Listen, Google does evil. It has done nothing but evil - but it does it with a smile. I wouldn't trust anything Google does because it's always in favor of their business model. The product they sell is intimate details about you, and free software is the currency they use to pay for their product.

      I haven't seen the details on Google's "encryption", but I wouldn't trust it unless the encryption/decryption happens only in the browser/client sending or receiving an email.

      If the encryption is just mail servermail server it has no protection from government spying. We already know the NSA is heavily tapped into all American corporate/cloud networks.

    6. Re:No point encrypting if you're the only one... by twistedcubic · · Score: 1

      People in the United States may find this useless, but in countries whose economies and government are easily manipulated by outside interests, this would be more popular, I think.

    7. Re:No point encrypting if you're the only one... by NotInHere · · Score: 2

      The W3C should standardize the way 'End-to-End' communicates with the website. It has a huge potential, not just for mail but also for chat or with WebRTC.

    8. Re:No point encrypting if you're the only one... by Capslock118 · · Score: 4, Insightful

      I agree 100%. I'd say 50% of my communication is with my family, and there is not a single person in that group that would be able to handle GPG. And anyway, we are at the point of "every message on every device", and again most of my family communicates on their smartphones, not on a desktop or laptop. Even if they did use a desktop/laptop the message would still have to be easily read on all of their devices (including default apps). There is just no point in wasting my time with email encryption since I am not any kind of political advocate and no one I communicate with would be able to use encryption. Heck, I have S/MIME on all of my devices for email and that works great and it's automatic......but I am the only person in my circle who uses that even though it's arguable easier to use than GPG (because it's supported by most of the default email applications out there). Why even bother with trying to ram encryption into email when there are other secure communication protocols out there?

    9. Re:No point encrypting if you're the only one... by Anonymous Coward · · Score: 2, Informative

      Do people using it know that their messages are encrypted? Probably not.

      Are their messages encrypted? Probably not.

      Easy enough your grandma can't do it.

    10. Re:No point encrypting if you're the only one... by Bob9113 · · Score: 1

      Just download this software, install it, and it'll work for your email client assume you're still using an email client and there's a plugin available for it, which there might not be. Otherwise you need to copy and paste and stuff, and... oh right, then there's also the whole issue of managing keys and keeping a backup copy safe. Most people don't back anything up.

      The first automobiles didn't have keys, but people have learned to use and manage them. And for those keys you can't even download the management equipment, you have to go to a hardware store to get copies.

      The problem is not that it is hard, the problem is that people don't realize the threat.

      take iMessage's encryption for example. Do people using it know that their messages are encrypted? Probably not. Are they given a choice? No. Do they know that they're generating encryption keys? Probably not. Are they asked to manage their own encryption keys? No.

      Is iMessage secure? No.

      --
      Stop-Prism.org: Opt Out of Surveillance
    11. Re:No point encrypting if you're the only one... by nine-times · · Score: 1

      Apparently, it's impossible to make it "easy enough" for the average user.

      And yet, as I point out, Apple has done it with iMessage. A lot of sites encrypt their traffic with SSL.

      I think the real problem is one of standards. Email is from a time when everyone wanted open standards. Rather than improve and refine those standards, everyone is moving towards closed systems (Facebook/Apple Messengers, Google Hangouts, etc.). Nobody is even trying to improve email anymore.

    12. Re:No point encrypting if you're the only one... by vux984 · · Score: 1

      Someone will get angry because I appear to be praising Apple, but take iMessage's encryption for example. Do people using it know that their messages are encrypted? Probably not. Are they given a choice? No. Do they know that they're generating encryption keys? Probably not. Are they asked to manage their own encryption keys? No.

      Does trusting Apple to write your encryption software, manage your encryption keys for you, and handle your actual communications make any sense in the least?

      I mean, yes, sure if you want to trust Apple.

      But if your position is that you trust Apple not to intercept and monitor your data, and to refuse to cooperate with government entities not to intercept and monitor your data then all you need is some transport layer security to prevent someone 'not Apple' from monitoring it during transmission. So https/ssl/tls is all you need.

      On the other hand, if you don't trust apple not to intercept and monitor your data, or you expect they will cooperate with government entities to intercept and monitor your data then you can't trust them to provide the end point software, or the encryption tools -- doublely so in a closed source manner where you can't even audit it.

      There is no scenario where you can simultaneously NOT trust apple AND rely on their proprietary encryption solution at the same time. That's like trusting a burglar to set up your home security system; especially if you aren't even allowed to fully inspect it. Its plainly idiotic.

      Email encryption needs to be that easy, or people won't use it.

      Sadly I agree. Which is why people don't use it.

      But for it to be that trustWORTHY, it has to built from the ground up with that goal in mind. It HAS to be open source, it has to be deterministically buildable, it has to be auditable, it has to be distributed and peer to peer system with no point of central compromise. The whole system has to be open and monitored by multiple parties.

      Thus while it -can- exist if enough people want it, it CAN'T be a solution built and distributed and run by a single corporate entity.

    13. Re:No point encrypting if you're the only one... by sexconker · · Score: 1

      The guide breaks it down into 6 simple steps, which each have several sub steps, which each have several actual things you need to do. All presuming you're running Thunderbird in Linux and that people you email will put up with the bullshit.

      I particularly like the step that tells you to blindly sign Adele's key. It's right before the step that tells you to never sign keys you didn't actually verify.

    14. Re:No point encrypting if you're the only one... by nine-times · · Score: 1

      The first automobiles didn't have keys, but people have learned to use and manage them. And for those keys you can't even download the management equipment, you have to go to a hardware store to get copies.

      People understand what cars do better than they understand computers, and when you lose your car keys, you don't lose the whole car.

      Is iMessage secure? No.

      Explanation needed.

    15. Re:No point encrypting if you're the only one... by mlts · · Score: 2

      Maybe this is pure Ludditism, but the best security is gotten by having a MUA that is separate from the e-mail provider, and the MUA handles PGP/gpg or S/MIME keys.

      There is something nice and convenient about Web based E-mail, but it is at a cost of end to end security.

      It isn't as good as end to end, but with Exchange, one can do encrypted TLS connectors with other Exchange sites that one does a lot of E-mail or other messaging with. This will secure the E-mail as it goes from site "A" to site "B". However, if site "C" still uses unencrypted SMTP, then anything going there isn't really secured.

    16. Re:No point encrypting if you're the only one... by mlts · · Score: 1

      I've used both PGP and GPG, but I have run into the spam filters. With S/MIME, I've run into people flipping out when they see the ribbon icon in a received E-mail on Outlook, to the point getting their company's legal department and a LEO involved because they thought a validated signature was malware.

      What I'd like to see is a signing system that piggybacks onto GPG, or perhaps S/MIME that would allow for read receipts (provided the receiver chose to allow it to be sent)... but maybe allow for mail to be "un-sent", although the mechanism involved would have to be flawless, or else it would be a big security issue.

    17. Re:No point encrypting if you're the only one... by mlts · · Score: 1

      Sometimes, I wonder about an encryption protocol implementation like iMessage being broken up into multiple companies, all separate, perhaps in different countries:

      1: The company that codes the client.
      2: The company with the servers where messages reside.
      3: The company that writes the protocol.
      4: The company that officially signs the executables to be distributed, but vets the code base for unauthorized changes before doing so.

      By splitting this up, it would take compromise of at least two of the above, and definitely the company with the servers.

    18. Re:No point encrypting if you're the only one... by TheGratefulNet · · Score: 2

      gmail will NEVER have encrypted mail, end to end.\

      why?

      think about it. their whole business model is about looking at your stuff. if you encrypt it, they can't see it.

      also, the other main reason is that you can't do searches if your on-disk data is encrypted.

      so, a web company will NEVER give true end to end (including on-disk) enryption. its againt their whole business model for many reasons.

      --

      --
      "It is now safe to switch off your computer."
    19. Re:No point encrypting if you're the only one... by nine-times · · Score: 2

      Does trusting Apple to write your encryption software, manage your encryption keys for you, and handle your actual communications make any sense in the least?

      It makes more sense than not encrypting your messages at all. Actually it's dramatically changing the sort of problem that you're dealing with. If you really just don't trust Apple at all, then I get it. Don't use their products at all, because they could have put in NSA backdoors to everything, so use FOSS.

      But my point wasn't that we should trust Apple. My point was that Apple managed to create an encryption scheme for messaging that results in every message being encrypted, without the user being expected to do special configuration and key management, and it's baked into their software by default. If Apple can do it, why can't someone else?

      For starters, if we want GPG to be the default for encryption, why can't we have thunderbolt built in such a way that it includes GPG, Enigmail, and everything else? Why not have the default setup prompt to set up encryption, generating keys or restoring them if they don't already exist? And what's your plan to standardizing backup/recovery of keys?

      Fine, don't trust Apple, but then build your own system that's at least as good.

      That's like trusting a burglar to set up your home security system

      Only if you assume that Apple is a burglar, in which case, don't trust them with anything. But in reality, it's just too much of a big deal to not trust anyone with anything. I put my money in a bank, even knowing it's possible for them to make unethical use of my banking records. I store my email on Gmail. I store my website with my web host. I accept SSL certificates from certificate authorities. I buy my phone from Apple and my laptop from Lenovo. There could be hardware chips built in by the manufacturers that are logging my keys. Realistically what am I going to do if I don't trust anyone? Even when I use Linux, I'm still trusting people. I didn't do a code audit myself.

    20. Re:No point encrypting if you're the only one... by muridae · · Score: 1

      Did you read their instructions? My parents use Thunderbird for email, because it's what I recommended for them. I decided to test on my clean box (browser only for the most part) and see how fast I could get my email, encrypt it with Enigmail and GPG, generate and upload a 4k key, and send out a signed email. Less than 10 minutes, most of that was waiting for the download because I've got torrents running elsewhere. With TBird installed, it was a few seconds to install GnuPG, a second for Enigmail, and less than a minute for me to get a key. The instructions walked through how to upload keys to any of various key servers, and sent off an email to my parents to see the same infographic and instructions on how they can and should do the same thing.

      Sure, it used to be all command line tool with no GUI, that was only usable by *nix geeks; no longer. The plugin is all built into TBird or your email program of choice's plugin system, and has a GUI that is just a few clicks away. Sure, it won't work on webpage email systems yet; if that's what you rely on then you have some valid complaints against the email provider and not against encryption.

    21. Re:No point encrypting if you're the only one... by vux984 · · Score: 1

      But my point wasn't that we should trust Apple.

      Except that's exactly what it is.

      My point was that Apple managed to create an encryption scheme for messaging that results in every message being encrypted, without the user being expected to do special configuration and key management, and it's baked into their software by default. If Apple can do it, why can't someone else?

      What is the value of every message being encrypted if Apple can decrypt them at will? That's like locking your car door to keep the valet out, and then handing the valet your keys.

      Of course its easy. But its also completely POINTLESS.

      For starters, if we want GPG to be the default for encryption, why can't we have thunderbolt built in such a way that it includes GPG, Enigmail, and everything else? Why not have the default setup prompt to set up encryption, generating keys or restoring them if they don't already exist?

      These are all good ideas.

      And what's your plan to standardizing backup/recovery of keys?

      I don't have the answer to that one. That's a hard problem.

      Only if you assume that Apple is a burglar don't trust them with anything.

      The point of end to end encryption is that if you trust the end points, you can afford NOT to trust the intermediary.

      If you DO trust the endpoints, and they are the same entity as the intermediary then WHAT IS THE POINT OF IMPLEMENTING END TO END ENCYRPTION?

      If you trust apple, then you trust apple. If you don't, then you don't. But what is the point of trusting Apple to provide the endpoints to provide you security against Apple compromising the comm channel in the middle? Apple doesn't EVER need to compromise the middle -- they already own the end points. So WHAT exactly are you accomplishing?

      Realistically what am I going to do if I don't trust anyone? Even when I use Linux, I'm still trusting people. I didn't do a code audit myself.

      Its not about absolute security. Its about identifying who you trust and who you don't.

      If I trust mozilla to provide me end point encryption and I do not trust verizon or google. Then using mozilla endpoints to encrypt messages so that I can send them over a verizon communication channel to be stored on a google server, to be retreived by someone else using verizon, using a mozilla endpoint... that is all perfectly reasonable.

      I trust mozilla, so they can 'touch' the encyrpted data. I don't trust verizon or google. So they can't. That's logical.

      Likewise, if I decide to trust apple to provide my endpoints that's fine too. But who am I protecting it FROM? I just need transport layer security to get it to apple's servers over verizons network, and since I trust apple, that's good enough. What does end to end encryption get me? That I trust Apple but I don't trust Apple? How is that not irrational?

    22. Re:No point encrypting if you're the only one... by McDutchie · · Score: 1

      And yet, as I point out, Apple has done it with iMessage. A lot of sites encrypt their traffic with SSL.

      Both of these are surely compromised by the NSA by now. Certainly SSL is.

      I think the real problem is one of standards.

      That is a really good point. The move to closed systems is a disease that is killing the internet.

    23. Re:No point encrypting if you're the only one... by FuzzNugget · · Score: 1

      But do you trust Apple enough to believe they haven't installed any backdoors in their closed-source software?

    24. Re:No point encrypting if you're the only one... by Anguirel · · Score: 1

      If you DO trust the endpoints, and they are the same entity as the intermediary then...

      But Apple isn't the same entity as the intermediary. Apple is involved with both endpoints by providing the hardware and software, but there's a cell tower, whatever service provider you have, whatever network connections are in between, whatever storage exists to ensure delivery even if the end point isn't currently available, whatever service provider the other person has, and another cell tower on the other end. Assume I trust Apple. I still don't trust all that stuff in the middle, particularly the cell phone and cell tower broadcast that anyone near that tower can pick up.

      Which is exactly what you go on to describe with regards to trusting Mozilla, but not Verizon or Google. Is it that there's an extra Apple storage point in the middle? So in your second example, if I trusted Mozilla *and* Google, but not Verizon, I don't need to bother with the extra security, just use SSL? And what if I trust the code Apple wrote, and the general security surrounding the encryption keys by Apple, but I don't trust that a third party never has access to the server Apple is using? Does that change things?

      --
      ~Anguirel (lit. Living Star-Iron)
      QA: The art of telling someone that their baby is ugly without getting punched.
    25. Re:No point encrypting if you're the only one... by vux984 · · Score: 1

      But Apple isn't the same entity as the intermediary. Apple is involved with both endpoints by providing the hardware and software, but there's a cell tower, whatever service provider you have, whatever network connections are in between, whatever storage exists to ensure delivery even if the end point isn't currently available, whatever service provider the other person has, and another cell tower on the other end. Assume I trust Apple. I still don't trust all that stuff in the middle, particularly the cell phone and cell tower broadcast that anyone near that tower can pick up.

      Which is why you need transport layer security, like https/ssl/tls. You don't need or benefit from "end to end encryption". I already wrote this in my original post.

      So in your second example, if I trusted Mozilla *and* Google, but not Verizon, I don't need to bother with the extra security, just use SSL?

      Bingo. And that is the world most of us live in. We trust the browsers/clients we use and we trust the services we deal with (be it google, dropbox, the bank), but we don't trust the commchannel and want to be secure from our data being overheard between the trusted endpoints. (Whether that trust, especially in the service endpoints has been misplaced is a separate issue, but that IS the trust model.)

      And what if I trust the code Apple wrote, and the general security surrounding the encryption keys by Apple, but I don't trust that a third party never has access to the server Apple is using?

      That's an interesting position. I suppose it does change things. But it it a rational position to hold? Why do you trust that a 3rd party never gets to tamper with the client, but has free access to the server?

      I concede it does amount to a net reduction in the attack surface; since there are 'fewer' places to attack. And I agree a reduction in the attack surface is a genuine benefit to the security.

      In terms of a malicious Apple or a coerced Apple you are still out of luck, and end-to-end encryption gets you nothing.

      But in terms of Apple itself being the victim of an opportunistic attacker who is able to compromise Apple in some partial but incomplete way then, in that scenario, yes, apple's end to end security was better than not having it.

      So I will revise my position; a single entities proprietary end to end encryption is the most worthless end-to-end encryption one can possibly have. But it IS better than not having it at all.

      Is that fair? :)

    26. Re:No point encrypting if you're the only one... by nine-times · · Score: 1

      Whether you do or not isn't really my point. I was just using it as an example. They made it easy, and if you want people to encrypt their email, it needs to be equally easy.

    27. Re:No point encrypting if you're the only one... by Defenestrar · · Score: 1

      Really? It's easy enough? Let's talk market share then. How many easy to use GPG FOSS plugins are there for Outlook 2013? 2010? How about the light email clients which comes with Windows 7 or 8? What about the Android basic email client? of the Android Gmail client? In the Windows environment all of the recent Outlook versions have hooks for plugins. There's even what's effectively an MS Office App store for addons. That sounds like a dead easy way for people to get a GPG plugin for the industry standard client... but where is it?

    28. Re:No point encrypting if you're the only one... by nine-times · · Score: 2

      Did you read their instructions?

      Yes. And I'm an IT guy, and I'll tell you that an awful lot of people would have trouble with those directions even if they wanted to follow them. For your average person, they'd have to install Thunderbird, GPG, and Enigmail-- and with that, you've already lost 90% of users. You haven't even gotten to dealing with the encryption keys, but give those instructions to most people and they'll say, "But can't I just use the Internet?" by which they mean, they would rather use webmail than install 3 applications. They won't even understand what those 3 applications are. You can forget about Linux.

      Plus, let's say they follow those directions and encrypt all of their email in Thunderbird. Now they're traveling and they want to read their email in webmail. Uh oh. It looks all weird. No problem, they'll just access it on their iPhone-- but it looks like gibberish there too!

      Sorry, it's not going to work like this. It needs to be much much easier than this.

    29. Re:No point encrypting if you're the only one... by nine-times · · Score: 1

      What is the value of every message being encrypted if Apple can decrypt them at will?

      IIRC Apple doesn't get your encryption keys in their system. I don't remember exactly how it works, but I remember reading that the encryption is from one endpoint to the other, and Apple doesn't actually have the ability to decrypt the message in transit. Now you could complain that they might have put in a back door. Well sure. That's possible with any closed source software-- and really even with FOSS software that hasn't been audited by someone you trust.

      Of course its easy. But its also completely POINTLESS.

      Well it really really depends. If you think that security is binary-- either "secure" or "not secure"-- then you grossly misunderstand the issue. Even if Apple can read your messages, which I could be wrong about but I believe they officially say that they can't, I would still trust Apple with a lot more information than I would trust the Internet are large. It's not locking your car to keep the valet out, it's asking the valet to lock your car once he's parked it.

      And besides, as I've said, I don't really care about Apple. I'm not saying, "Don't encrypt your email! Just use Apple's Messenger instead because it's way better and secure!" I'm saying that if you want people to encrypt their email, look at what Apple's done as a possible model for how to accomplish that, because they succeeded in making it an easy process.

      If you DO trust the endpoints, and they are the same entity as the intermediary then WHAT IS THE POINT OF IMPLEMENTING END TO END ENCYRPTION?

      Yeah, kind of my point in saying, "Only if you assume that Apple is a burglar don't trust them with anything." There's levels of trust. I've given Apple my credit card before, and I trust that they're not going to charge me for anything that I didn't buy. Therefore, if I were going to send credit card information over the internet, I'd prefer to use their encryption over nothing.

      But again, this isn't about Apple. I have no problem with you distrusting Apple. Still, you're going to have to trust someone sometime. You trust Mozilla? Fine, then let them implement an encryption scheme as simple for users to work with as Apple's is. I'd be perfectly happy with that.

      If it hasn't come through in our discussions, my preference is for there to be improvements to be made to email, according to open standards that can be implemented by Mozilla, Apple, Google, and everyone else, that make encryption dead-simple. The fact is, email could stand to be improved in many ways, but it won't be anytime soon because you have Apple running off and doing it their own way, Google running off and doing it their own way, and Mozilla allowing you to install a plugin that calls another application that most people don't have installed, which then allows you to run a wizard, that dumps out a key, that needs to be backed up in some unspecified way or you lose all of your email, which also renders your email unreadable anywhere else.

    30. Re:No point encrypting if you're the only one... by anethema · · Score: 1

      Pretty much no one expects email attachments to be encrypted.

      iMessage was the example and they are certainly encrypted.

      Now whether the NSA can't just backdoor in who knows, but on the face of it, they are.

      --


      It's easier to fight for one's principles than to live up to them.
    31. Re:No point encrypting if you're the only one... by exomondo · · Score: 1

      Gmail is working on it. And they're trying to get other e-mail providers onboard.

      I can't seem to find much credible evidence to back that and certainly an end-to-end encryption model would run contrary to their entire profit model for gmail, if implemented correctly it would mean no more targeted advertising and I wouldn't think they would be very keen on doing that.

    32. Re:No point encrypting if you're the only one... by AHuxley · · Score: 1

      Where your "free" fully encrypted email/chat reverts to plain text for advertizing, that is where 5+++ governments, ex gov staff, former gov staff are waiting.
      You have seen the lists of brands that fully, willingly and over years allowed this to happen on/deep in/to/from their own branded, dedicated networks.
      The backhaul, client, server can have all the fancy, best, open source crypto you like.

      --
      Domestic spying is now "Benign Information Gathering"
    33. Re:No point encrypting if you're the only one... by MTobix · · Score: 1

      That sounds like a dead easy way for people to get a GPG plugin for the industry standard client... but where is it?

      Hi, I am the development lead of gpg4o - a GnuPG integration for Outlook
      I can tell you that there is no dead easy way for getting GnuPG into Outlook. You are facing three major problems
      - Outlook hooks are very tricky especially if your manipulating mails
      - There are many dialects of OpenPGP message formats
      - Hiding the complexity of GnuPG for the avarege end-user, so that a non-nerd can use it.


      We spend several man-years with research and development for polishing our product.

      These are the reasons the Open Source Plugins for Outlook are failing in the daily use.

      Tobias

    34. Re:No point encrypting if you're the only one... by AmiMoJo · · Score: 1

      It's a trade off. Less security for transparent operation and ease of use. Infinitely preferably to the current situation where there is zero security.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    35. Re:No point encrypting if you're the only one... by AmiMoJo · · Score: 1

      What they are talking about is encrypting email before it leaves Google's servers and goes out onto the wider internet. The NSA/GCHQ intercept email sent that way - it was in the Snowden slides. This would at least make bulk surveillance much harder, if not impossible. Sure, they could force Google to hand over decrypted copies, but at least that would require some kind of legal process instead of just hoovering everything up into a massive database.

      This also has the added benefit of being transparent to the user, guaranteeing widespread adoption. It's similar to BBM or iMessage - you wouldn't trust you life to it, but considering most people use no encryption at all right now it is a massive improvement.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    36. Re:No point encrypting if you're the only one... by nine-times · · Score: 1

      There is something nice and convenient about Web based E-mail, but it is at a cost of end to end security.

      Not necessarily. We would just need a standard protocol for handling encrypted webmail, and then universal browser implementation for that protocol. Like maybe you wrap the output in <encrypted></encrypted> tags, and then browsers know how to interpret the tags and have access to the private keys. Google already syncs settings and extensions with your chrome profile, so if you trusted Google to do it, they could even sync your private keys. If you didn't trust Google, then we'd just need to figure out a different way to get access to your keys if you want to access your webmail away from your own computer.

      Of course, then mail clients and mobile devices would need to support the same form of encryption as what the web browsers are using. That's the biggest issue: developing a standard for handling these things that everyone can agree on, and that everyone will implement. We already know how to do this. We're just not doing it.

    37. Re: No point encrypting if you're the only one... by nine-times · · Score: 1
      Usually don't reply to anonymous cowards, but I gather you're the same guy, so here goes:

      And you're argument of "joe-normal's email program of choice doesn't make encryption easy" sounds like a complaint for the program or webpage, not against encryption.

      That's because I'm not at all opposed to encryption. I'm saying that this stunt to advocate encryption will be ineffective. My argument is basically that we need to standardize on forms of encryption that will then be built into all platforms natively, including effective methods of key management, that make the whole process transparent to end-users. If end users need to install software, if they even need to understand that their email is encrypted in order to access it, then you're doing it wrong.

      the discussion i had with my mother...

      That's all well and good. Your mother sounds much more sensible than most people. You may think that she's clueless, but most people are both clueless and stubborn. They barely understand the concept of encryption, don't understand anything about how it works, are not very interested in security, and will outright refuse to accept changes in their workflow. If I were to set something up like this for my own mother, I wouldn't trust her to do it. I would have to set it up for her and then keep a copy of the keys myself as a safeguard. Even then, I'd worry that at some point, she'd decide to generate her own new keys and then lose them, because you just don't know what the hell that woman is going to do.

      Myself, I wouldn't use GPG because there's not wide enough support. I use Outlook for work, and last time I tried it, the GPG plugin didn't work in Outlook and just crashed everything. I would sooner try to use S/MIME, which is more widely supported. But that's sort of my point-- you need a single set of standards that everyone is using, or else the encryption schemes have limited utility.

    38. Re:No point encrypting if you're the only one... by mlts · · Score: 1

      We sort of have that with OpenPGP encrypted files, and Web add-ons. However, it assumes one is going to load their private keys into the Web browser... and because the Web browser is the first thing that gets its face curb-stomped come a 0-day, this may not be a wise thing unless there is OS support for keeping the keys, decryption module, and decrypted text viewer/attachment manager well out of the browser's OS context.

      The reason I suggest an old fashioned MUA is because they tend to not be as vulnerable to malformed E-mail messages when configured properly. The spammy E-mails either try to get someone to download a wrapped executable (.scr extensions are commonplace), or get the user to visit a bad site. The E-mail themselves tend to not by themselves be dangerous, assuming scripting is turned off by default.

    39. Re:No point encrypting if you're the only one... by nine-times · · Score: 1

      ...when configured properly...assuming scripting is turned off by default.

      You know what happens when we assume.

      The problem with expecting people to have mail clients is that it can be very inconvenient when people aren't bringing their own computer with them. Web applications have the benefit of being available cross-platform on any computer with a web browser that can access the internet. Another problem is that mail client development has been somewhat stagnant. What are my options? Outlook or Thunderbird? And how has Thunderbird improved in the past 10 years?

      I mean, really, email itself has been stagnant. You might angrily respond saying, "Well how do you expect it to develop? It does what it does, and it does it well!" And yet I'm still flooded with spam, and don't have an easy method of end-to-end encryption. There isn't good support for cross-platform server-side metadata extensions (e.g. if I tag an email message on my IMAP account in Thunderbird, and then I access it on another computer in Mac mail or Outlook, those tags aren't there). Email kind of sucks because it's stuck in the 1980s.

    40. Re:No point encrypting if you're the only one... by Defenestrar · · Score: 1

      Thanks for the update and comment Tobias. I'm sorry it's not as easy on the development side as I had been given to understand and I apologize for being wrong and spreading that misconception. I do still think that until encryption is adopted as an industry standard (which means Outlook) people won't be taking it home for personal mail (which means there will also need to be simple gmail/hotmail/etc... web plugins - those however seem at least slightly more accessible to the general public).

      It is also my opinion that until it is free (as in beer) it also won't see mainstream adoption. Perhaps you could do a trial sale on the Office store for a nominal price (0,99 EUR) and see if you make up in volume what you lack in individual price. You could also try something similar at other software sales locations (i.e. get in on a Steam sale for 98% off or something like that - I'd bet you sell tens of thousands of copies).

  4. Misuse by Impy+the+Impiuos+Imp · · Score: 2

    > the seemingly obvious truth that undue
    > government surveillance, besides being
    > an affront in itself, chills free speech.

    When I first read this, I was completely shocked that, because the NSA monitors this, anyone would ever think they are anything but a bunch of swell guys.

    --
    (-1: Post disagrees with my already-settled worldview) is not a valid mod option.
  5. Fixing a social problem with technical means? by cpghost · · Score: 5, Insightful

    Basically, we're making it WAY too easy for the NSA to spy on us. But, even if we all switched to encrypted mail, that's not enough: with their metadata collection, they can still infer a lot of things from our communications patterns. So technically, we need I2P, Freenet or similar anonymizing technology to hide in the crowd. However, to REALLY fix the problem once and for all, we need to take it to the political arena, and fight for majorities to get Congress to reign in NSA in earnest, no matter what "Yes We Scan" Obama wants. If we don't, Orwell's 1984 will remain in effect, no matter how much we use OSS, encryption and so on.

    --
    cpghost at Cordula's Web.
    1. Re:Fixing a social problem with technical means? by Anonymous Coward · · Score: 1

      It has to be a two-pronged approach. The political side is a very necessary piece, but if it is the sole approach then there will still be an immense temptation to spy on the public still because the public's information is ripe for the picking and hey, nobody is watching.... If the technological piece is the sole approach, you can expect the gov't to use its muscle to subvert the technology or outright ban it. The two approaches must work in concert: Slap the gov't on the nose and stop them from taking our data and subverting our technology, but also secure ourselves so that it will be more difficult to get meaningful information covertly and reduce the gains from doing so.

    2. Re:Fixing a social problem with technical means? by mlts · · Score: 1

      Another issue is that some protocols are viewed negatively. Tor comes to mind, because it is anonymous and works well... but it becomes a source of abuse, and it is also associated with the Four Horsemen of the Infocalypse. If one could get mainstream users not just using Tor, but setting up usable exit nodes, it might change the perception.

    3. Re:Fixing a social problem with technical means? by Shatrat · · Score: 1

      Historically, technical means are a valid way to help fix social problems. Would we have ended slavery as quickly without the cotton gin?

      --
      09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0
    4. Re:Fixing a social problem with technical means? by mooingyak · · Score: 2

      Historically, technical means are a valid way to help fix social problems. Would we have ended slavery as quickly without the cotton gin?

      Isn't that backwards?

      quoting from first link from "cotton gin effect on slavery"

      The cotton gin freed slaves from the arthritic labor of separating seeds from the lint by hand. At the same time, the dramatically lowered cost of producing cotton fiber, the corresponding increase in the amount of cotton fabric demanded by textile mills, and the increasing prevalence of large-scale plantation agriculture resulted in a dramatic increase in the demand for more slaves to work those plantations. Overall, the slave population in the South grew from 700,000 before Whitney’s patent to more than three million in 1850—striking evidence of the changing Southern economy and its growing dependence on the slave system to keep the economy running.

      --
      William of Ockham had no beard. The most likely explanation is that it was chewed off by squirrels every morning.
    5. Re:Fixing a social problem with technical means? by Shatrat · · Score: 2

      Well shit, I guess maybe we shouldn't encrypt our emails after all.

      --
      09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0
    6. Re:Fixing a social problem with technical means? by jbn-o · · Score: 1

      It's not enough, true, but we need to get Americans trained in the practice of being more politically active and to seriously consider the consequences of their consumerism. Today, encouraging people to think of encryption as required for increased secure communications is good. We can't fix anything "once and for all" because any change to anything can be reverted (hence Andrew Jackson's warning "...eternal vigilance by the people is the price of liberty, and that you must pay the price if you wish to secure the blessing" applies here too). Software proprietors and others who want to rob computer users of their freedom spend billions training people to think ephemerally (in fact, /.'s chosen "firehose" structure of fast and frequent updates usually from corporate repeaters exists to further that end). We need ordinary people to become more aware of the consequences of ignorance, make better choices, and train future generations that the acceptable social norm is lifelong political involvement. I think failing to meet this need is one of Snowden's fears ("The greatest fear that I have regarding the outcome for America of these disclosures is that nothing will change..."), and why Stallman says things like "I don't want any fans I want Freedom Fighters, who could actually help in his revolution". I have no doubt that whomever follows that murderous war criminal Obama in the US White House will follow the same behavior he both chose to follow from George W. Bush and ramp up. I'm not certain what will stop the horrors of "Terror Tuesday" killings, indiscriminate NSA spying, and more, but I won't object when groups want to raise awareness and help normalize objecting to the loss of our civil liberties.

      --
      Digital Citizen
  6. Encryption isn't privacy by bigpat · · Score: 5, Interesting

    Encryption misses the point. Encryption isn't privacy. The major threat to privacy from the US government is not from the content of your communications being read without a warrant it is that your communications are going to be monitored without a warrant so they will be able to monitor all your associations, purchases, communications and movement and locations. Basically it is like having a tail on 24x7 with someone looking over your shoulder... they don't need to know what you are saying until they want to and if they want to then you are past the point where encryption will mean much since they can put a keylogger on your system or maybe even break your 256 bit encryption.

    The only protection from the surveillance state is either to eliminate communications technology altogether or to return to the rule of law.

    1. Re:Encryption isn't privacy by nine-times · · Score: 1

      I think you missed my point. I'm not saying there's no point in encrypting your email. I'm saying there's no point if the recipient doesn't have their own software and keys to decrypt the encrypted message.

    2. Re:Encryption isn't privacy by DrYak · · Score: 1

      Encryption isn't privacy.

      Encryption isn't everything and all privacy.
      But encryption is part of the solution, as much as Tor, etc.

      your communications are going to be monitored without a warrant so they will be able to monitor all your associations, purchases, communications and movement and locations. Basically it is like having a tail on 24x7 with someone looking over your shoulder...

      Perfect privacy will require several component. Encryption is one of the them. Connection obfuscation like Tor is another. Relying on pseudonymous identities (Do Not Track Me single-use email addresses, for example) is yet another.

      then you are past the point where encryption will mean much since they can put a keylogger on your system or maybe even break your 256 bit encryption.

      the 256 bits encryption is safe. the actual maths behind it have been repeatedly proven to be sound and secure.
      getting the password stolen (keylogger, side channel, implementation bugs, etc.), on the other hand is likely to be what will happen. (and as both software and hardware is shown to be backdoored, they won't even need the effort of puting an new keylogger, just use the backdoors).

      The only protection from the surveillance state is either to eliminate communications technology altogether or to return to the rule of law.

      In the mean time, you can also make the surveillance job as difficult and expensive as possible.
      Thus: encrypt and obfuscate as much as possible, even for trivial everyday activities.

      --
      "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
    3. Re:Encryption isn't privacy by bigpat · · Score: 1

      Sorry. I was hijacking your statement to make another. Of course you are correct that for encryption to be effective it has to be the default for everyone rather than some special thing only criminals, national security types and paranoid people use. Basically using encryption now is like raising a big red flag saying 'look at me look at me I am using encryption!!'

      But my point is that even with encryption it does not thwart 95% of the threat from unconstitutional government surveillance or criminal hackers. Sure if Google can make encryption more standard then that would be a great accomplishment, but it is just one small slice of the privacy pie.

    4. Re:Encryption isn't privacy by bigpat · · Score: 2

      I don't disagree with the idea that some of these things might be worth doing, especially if you have intellectual property or activities that are worth protecting. Just disagree with the notion that it would be easier to get a few billion people talking with encryption than it would be to just get some politicians elected who might actually put some constitutional restraints back on the NSA and other US government agencies. Encryption is better than not having encryption, but relying on encryption when you don't have well managed keys or security in other parts of your system is what I think can lead to a screen door on a submarine mentality where you think you have a door.

  7. pointless by Charliemopps · · Score: 4, Insightful

    This is pointless. The 5 people that do this will be protected when they communicate with one another. That's it.

    Lets be clear. I don't care if Google or Facebook are spying on me (well, I do, but that's an entirely different topic.) The NSA is definitely the "worst" despite what this says. I'm even less concerned about foreign governments or criminals spying on me. The real danger is to our entire way of life. What the NSA is doing could be used to turn us into a true totalitarian state... very easily. What China, or some script kiddy, or even what Google can do with this information pales in comparison to the atrocities the federal government could commit with this power. The only thing restraining them at this time is their own will not to do so. That is NOT acceptable in my opinion. How long before we elect the next Nixon? or Stalin? It will happen, it always does. What will they do with this power?

    1. Re:pointless by timrod · · Score: 2

      It's also pointless because the NSA doesn't care about reading emails - they have no need to. Even with encryption, they can read the headers on the email and the sender/receiver email addresses and link those with real people. They can see who you're communicating with and how often you do so. If they really want to know what you're saying, they have a myriad of options at their disposal:

      - Call the FBI (or other nationwide law enforcement agency for those not in the US) and have them raid you and everyone you talk to, either allowing them to obtain the private keys off your PC or by jailing you indefinitely for contempt of court for refusing to hand the keys over.

      - Send out NSLs and obtain pen register orders against everyone you talk to, allowing them to read the already-decrypted messages.

      - Use any one of their stash of zero-days and backdoors to install a pen register on your computer.

      No amount of encryption is going to stop an agency that can send a small army of thugs to your door for any reason or no reason at all.

  8. Agreed by Anonymous Coward · · Score: 2, Insightful

    The essence of this demand is "You have a responsibility to smarten-up."

    That has never, and will never, work. Humans simply do not work that way.

    My optimistic side says the major players will make it easy, like your example from Apple, and then all will be good.

    My cynical side says the government will simply slap some gag orders on the industry players, and impose backdoors, and roll merrily along with the surveillance.

    The *only* people who can be protected from this are those smart enough, and motivated enough, to do something that is not easy.

  9. Re:Today's Vancouver Sun says Canada spying on the by Anonymous Coward · · Score: 1

    No - check out the "UKUSA Agreement"...
    The Canadians are spying on the Americans, New Zealanders, Australians and Brits.
    The Americans are spying on the Canadians, New Zealanders, Australians and Brits.
    The New Zealanders are spying on the Americans, Canadians, Australians and Brits.
    The Australians are spying on the Americans, Canadians, New Zealanders, and Brits.
    The Brits are spying on the Australians, Americans, Canadians, and New Zealanders.

    All perfectly technically legal.
    All rather unstoppable as long as the NSA shills can keep the sheeple thinking that gnupg is too difficult.

  10. Re:paper shipped through the world's postal system by NotInHere · · Score: 1

    If you have the time and money you use transistors and cables to build your own macro-sized AES encrypting typewriter. You can check all parts yourself. You can send the result per mail, or even scan it and send it to the recipient with E-Mail.

    The large corporations could employ secretaries that all day do nothing else than handle these machines. Their communications would be perfectly secure! This will kill unemployment!

  11. SSL:Completely different level by DrYak · · Score: 1

    A lot of sites encrypt their traffic with SSL.

    Yet, SSL handle only the encryption between a server, and the client application. (and can be made totally transparent to the user).
    Whereas the anti-surveillance discussed here are end-to-end (from one user to the other) and will always require some minimal end-user intervention (key handling, although the interaction can be minimized and user interface efforts can make the experient as easy as possible).

    (Facebook/Apple Messengers, Google Hangouts, etc.).

    Note that OTR (Off-the-Record) is standard, and is capable to be used above any of those, just like OpenPGP works over email.
    But again, this requires either using full blown clients (pidgin, adium, jitsi, messagebird, or any other OTR compliant client) or using extensions (like cryptocat) to be able to use it from within a webapp.

    Also, for obvious reason, OTR disturbs the "search" fonction on chat web-apps (as the webserver only sees encrypted text and can't search).

    --
    "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
    1. Re:SSL:Completely different level by nine-times · · Score: 1

      Yet, SSL handle only the encryption between a server, and the client application.

      You can use the same encryption scheme for encrypting anything.

      ...will always require some minimal end-user intervention...

      Not necessarily. You just need to make key management easy. I know people are going to get angry every time I bring up Apple, but OSX can store certificates/keys in the keyring, which can then be backed up to iCloud. Don't trust Apple if you like, but my point is that it's not impossible to make the whole thing much more automatic, safe, and easy for normal users.

    2. Re:SSL:Completely different level by TheCarp · · Score: 1

      A guy I know was working on a solution to this a few years back, but it just kind of stagnated and died after the initial specifications. Called it the "Passive privacy system".

      Basically a PPS enabled emailer would transparently generate gpg keys on first use, with no password, and advertise them in headers. If you begin a conversation with someone else who supports it but whose key you don't have, then it uses a header based conversation to exchange keys and starts encrypting all messages within a couple of emails.

      Then....if a user decides later that they actually care, they can always generate new keys and/or add passwords to protect their keys.... but that becomes an added level of security on top of a rather strong base level.

      --
      "I opened my eyes, and everything went dark again"
  12. Re:Today's Vancouver Sun says Canada spying on the by WillAffleckUW · · Score: 1

    Yeah, basically we're paying foreigners to spy on us. Raisin our taxes 'n Outsourcing 'merican jobs. Great!

    Use 4k keys folks - the spooks really hate that! Takes at least twice as long to break our codes.

    Hey it's only $10,000,000,000 a year!

    Which if we spent on building wind and solar we would solve the Global Warming crisis with.

    --
    -- Tigger warning: This post may contain tiggers! --
  13. It only works if every *else* uses it by msobkow · · Score: 1

    The problem with public key encrypted email is that your keys only work for encrypting email you receive, not the email you send. In order for an email to be private, the receiver has to set up encryption.

    While I'm sure I could set up encryption for my email quite easily, I can assure you most of my friends and family have no interest in going to the effort.

    In addition to that, encryption only encrypts the body of the message. The to/from addresses, header line, and other tags are sent in plain text, regardless of whether you "encrypt" your email. And the NSA, et. al. claim they're only interested in that header information in the first place to identify who your contacts are, not what you're saying to them.

    So encrypt away -- they're still getting the info they want from your email headers.

    --
    I do not fail; I succeed at finding out what does not work.
    1. Re:It only works if every *else* uses it by AHuxley · · Score: 1

      Depends on what you feel like doing. Encryption can be fun just to add to the huge mix of everything the gov is keeping and knowing your repeated use of encryption will be noted.
      You could contact the media about past political stories in your state and retype the names, court events, keywords and offer the press support, scans of related paper or not digital work from the past.
      Take up photography.
      Always have a fully charged video camera (none of that 10/20 min limit hardware) at hand for the expected 'chat down'.
      Is it one person, two people at your door, are they using a federal task force email/seal to make their state wide work seem federal?

      --
      Domestic spying is now "Benign Information Gathering"
  14. Great article wrong on paper mail being safe by sasparillascott · · Score: 4, Informative

    Great article but this part isn't correct:

    "Nowadays, that means nearly everything besides face-to-face communication, or paper shipped through the world's postal systems."

    As shown here - every single piece of 1st class mail in the U.S. is photographed (and probably handed over to the FBI or NSA or whomever started this stupid program up in the first place to get the Post Office to do that):

    http://www.nytimes.com/2013/07...

    Short of radical political reform, which seems a long shot in the U.S. in the near term - technical solutions coming from open software will be the few ways we can restore some privacy to communications.

  15. Re:Today's Vancouver Sun says Canada spying on the by WillAffleckUW · · Score: 1

    twitter - no link for you - they changed the title twice - last title was "Government orders federal departments to keep tabs on all demonstrations" and also coverage of bill S-4 in Globe and Mail.

    --
    -- Tigger warning: This post may contain tiggers! --
  16. prove it by kwoff · · Score: 1

    the NSA is certainly not the first, and arguably far from the worst

    What's this argument? First of all, prove that you're not from the NSA.

  17. arguably far from the worst!!!???? by zedaroca · · Score: 1

    What other country is ACTUALLY KILLING THOUSANDS OF FOREIGN PEOPLE based on oil interests and using it's spying network to determine the targets???? What other country is fighting against democracy in Latin America and Europe (by making coups like the recent one in Paraguay and subverting justice like in Sweden)? What evil could Chinese spying do to an American citizen? I'm not talking about stealing trade secrets, I'm talking about real harm. Will an American be detained indefinitely without accusation due to Chinese spying? No. Just American spying do real harm to both Americans and foreigners.

  18. Encryption isn't privacy by LessThanObvious · · Score: 1

    That is exactly right. The push to encourage encryption does not solve the issue. De-funding and dismantling the NSA and taking back our freedoms through clear legislation is the only way to get what we deserve as a nation. Encrypting ordinary communication beyond simply using SSL/TLS is like bowing down and saying you don't expect the first amendment to protect you. When the teeth are gone from the fourth amendment the first amendment losses it strength as well. The moment we start editing our communications to keep our privacy, real freedom is lost. That said if you want to say anything private and keep it private strong encryption and a low profile are the only means to assure such privacy.

  19. Trust vs. No-Trust by DrYak · · Score: 1

    It boils down to different trust models.

    Trusting every involved government to stop indiscriminately spying on all its citizens require quite a leap of faith.
    Encrypting between your correspondent and you doesn't require trust in 3rd parties like government or secret agencies.

    Under this situation, having encryption anyway is always good in case that the gov decides to deceive you.

    But yeah, I agree with you that achieving *proper* encryption isn't easy.

    Now there's another effect: increasing usage of encryption increases (as I've said above) the cost of spying.
    So use TOR even if it's just for pr0n !

    --
    "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
  20. OTR by DrYak · · Score: 1

    OTR basically works this way above any chat stream.

    It's made entirely transparent, user won't notice that encryption is happening (I mean, unless they log into GMail and notice that the GTalk/Hangout chat logs only contain encrypted garbage).

    The only required action from the user is running through a "socialist millionaire" identity confirmation.

    --
    "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
  21. Encryption versus protocol by DrYak · · Score: 1

    Yet, SSL handle only the encryption between a server, and the client application.

    You can use the same encryption scheme for encrypting anything.

    TLS/SSL is not an encryption scheme. It's protocol which defines how a client application and a server negociate an encryption. You can't use it for mush else.

    AES is an encryption scheme, you could encrypt anything with it (an SSL connection, a ZRTP media transmission, password-protect an archive, encrypt a file with OpenPGP)

    of course libraries like openssl will implement both (because what purpose would be SSL without actually being able to encrypt ?!) and other functionnality (S/MIME, similar to openPGP in that it use PKI for encryption, but instead use the same central authority model as SSL, instead of the web-of-trust model like openPGP).
    Note that several Linux distribution also feature the same level of use simplification.

    You just need to make key management easy. I know people are going to get angry every time I bring up Apple, but OSX can store certificates/keys in the keyring, which can then be backed up to iCloud {...} it's not impossible to make the whole thing much more automatic, safe, and easy for normal users.

    I've never said it's impossible to make it better. But the user will always need some level of intervention (like at least caring that encryption happens, and checking that correct keys are used).

    --
    "Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
    1. Re:Encryption versus protocol by nine-times · · Score: 1

      TLS/SSL is not an encryption scheme.

      And yet you could use the same encryption standards and public key management to encrypt anything. You're just being pedantic. There's no point in arguing here about specific standards.

      I've never said it's impossible to make it better. But the user will always need some level of intervention (like at least caring that encryption happens, and checking that correct keys are used).

      It depends on what you mean by "some level of intervention". Lots of people go to their bank's website without knowing that encryption is happening or that they keys are correct. Their browsers check the keys for them, providing some level of security even if they're totally unaware. No doubt things are *more* secure if people understand the encryption well enough to know how the security could be circumvented, but I'm not expecting that we can provide absolute security for all people. I'm thinking that we could provide much better security for all people-- which shouldn't be too hard since there's not much security now-- and the possibility of strong security for those who have even a basic understanding.