U.S. CitiesCity-Data Forum Index
Go Back   City-Data Forum > General Forums > Science and Technology > Internet
 [Register]
Please register to participate in our discussions with 2 million other members - it's free and quick! Some forums can only be seen by registered members. After you create your account, you'll be able to customize options and access all our 15,000 new posts/day with fewer ads.
View detailed profile (Advanced) or search
site with Google Custom Search

Search Forums  (Advanced)
Reply Start New Thread
 
Old 07-06-2014, 04:58 PM
 
15,924 posts, read 17,648,084 times
Reputation: 7645

Advertisements

Too good to be true?

Quote:
Encryption is hard. When NSA leaker Edward Snowden wanted to communicate with journalist Glenn Greenwald via encrypted email, Greenwald couldn’t figure out the venerable crypto program PGP even after Snowden made a 12-minute tutorial video.

Nadim Kobeissi wants to bulldoze that steep learning curve. At the HOPE hacker conference in New York later this month he’ll release a beta version of an all-purpose file encryption program called miniLock, a free and open-source browser plugin designed to let even Luddites encrypt and decrypt files with practically uncrackable cryptographic protection in seconds.

“The tagline is that this is file encryption that does more with less,” says Kobeissi, a 23-year old coder, activist and security consultant. “It’s super simple, approachable, and it’s almost impossible to be confused using it.”
The Ultra-Simple App That Lets Anyone Encrypt Anything | Threat Level | WIRED
Reply With Quote Quick reply to this message

 
Old 07-07-2014, 01:00 AM
 
26,158 posts, read 15,737,854 times
Reputation: 17235
I would say YES its too good to be true!!
Reply With Quote Quick reply to this message
 
Old 07-07-2014, 04:40 AM
 
15,924 posts, read 17,648,084 times
Reputation: 7645
Quote:
Originally Posted by Dude111 View Post
I would say YES its too good to be true!!
Well, the Hope hacker conference is held on July 18-20, we should see what turns up.
Reply With Quote Quick reply to this message
 
Old 07-07-2014, 08:03 PM
 
40,182 posts, read 41,790,512 times
Reputation: 16740
The big issue with public/private key encryption is the sender needs to take action and obtain the recipients public key but I'm not sure how else you could go about it.

For those unfamiliar how this works the recipient first needs to obtain two keys, one is public and one is private. The public key can be published anywhere, it only encrypts the content. So if I wanted you to send me an encrypted file I can just send you my public key, I can post here on this forum if I wanted. you would use that to encrypt the file and once encrypted even you can't decrypt it.

You send that file to me and I can use the private key to decrypt it. Only the private key held by the recipient can decrypt the content.
Reply With Quote Quick reply to this message
 
Old 07-07-2014, 11:16 PM
 
15,924 posts, read 17,648,084 times
Reputation: 7645
Quote:
Originally Posted by thecoalman View Post
The big issue with public/private key encryption is the sender needs to take action and obtain the recipients public key but I'm not sure how else you could go about it.

For those unfamiliar how this works the recipient first needs to obtain two keys, one is public and one is private. The public key can be published anywhere, it only encrypts the content. So if I wanted you to send me an encrypted file I can just send you my public key, I can post here on this forum if I wanted. you would use that to encrypt the file and once encrypted even you can't decrypt it.

You send that file to me and I can use the private key to decrypt it. Only the private key held by the recipient can decrypt the content.
Well as I said earlier we'll have to wait and see what turns up during the Hope Hacker Conference.

In case you didn't bother to read the article all this person wanted to do was simplify the process which we can all agree is a real PITA.
Reply With Quote Quick reply to this message
 
Old 07-08-2014, 09:32 AM
 
40,182 posts, read 41,790,512 times
Reputation: 16740
Even if that process is simplified two parties are involved and both need to take action. Most importantly if you are the person wanting to send something encrypted the recipient is the one that needs to take action first. That is where the breakdown is in it's use.
Reply With Quote Quick reply to this message
 
Old 07-08-2014, 11:09 AM
 
Location: SoCal
6,119 posts, read 9,727,767 times
Reputation: 5942
Back when PGP first came out, several of the email clients had incorporated it. So it's entirely possible that someone could produce an app to make it easier to use. But I agree that it takes two people to use it and that's more likely what's prevented its wide-spread usage. (That and the fact that the powers-that-be were attempting to prosecute the inventor of PGP for a while because he'd come up with a way to thwart their spying.)

But inherently, PGP use isn't very complicated. The only reason I can think of that Greenwald couldn't "get" it after a video tutorial is that Snowden didn't explain it simply. In fact, if Snowden took 12 minutes to explain it, he almost certainly didn't explain it simply.
Reply With Quote Quick reply to this message
 
Old 07-09-2014, 03:48 PM
 
15,924 posts, read 17,648,084 times
Reputation: 7645
Quote:
Originally Posted by thecoalman View Post
Even if that process is simplified two parties are involved and both need to take action. Most importantly if you are the person wanting to send something encrypted the recipient is the one that needs to take action first. That is where the breakdown is in it's use.
Are you daft?

Do you really think this developer is so stupid as to think it only requires one party?

As I suggested before, you didn't bother to read the article:

Quote:
“No logins, and no private keys to manage. Both are eliminated. That’s what’s special,” says Kobeissi. “Users can have their identity for sending and receiving files on any computer that has miniLock installed, without needing to have an account like a web service does, and without needing to manage key files like PGP.”

If miniLock becomes the first truly idiot-proof public key encryption program, it could bring sophisticated encryption to a broad new audience. “PGP sucks,” Johns Hopkins’ Green says. “The ability for regular people to encrypt files is actually a valuable thing…[Kobeissi] has stripped away the complexity and made this thing that does what we need it to do.”
Reply With Quote Quick reply to this message
 
Old 07-09-2014, 07:41 PM
 
Location: where you sip the tea of the breasts of the spinsters of Utica
8,301 posts, read 12,380,093 times
Reputation: 8057
Well, let's hope the NSA didn't design this.
Reply With Quote Quick reply to this message
 
Old 07-10-2014, 04:14 AM
 
40,182 posts, read 41,790,512 times
Reputation: 16740
Quote:
Originally Posted by plwhit View Post
Are you daft?

Do you really think this developer is so stupid as to think it only requires one party?

As I suggested before, you didn't bother to read the article:
Why do you need to be so abrasive in your posts?

I didn't say the developer didn't realize it. The point is no matter how simplified the process is the breakdown occurs becsue two people need to take action. If the person I want to send encrypted files too is too lazy or could care less it's not going to happen without action from their part. No matter how safe I want to be with my communication I'm reliant on the actions of another party.
Reply With Quote Quick reply to this message
Please register to post and access all features of our very popular forum. It is free and quick. Over $68,000 in prizes has already been given out to active posters on our forum. Additional giveaways are planned.

Detailed information about all U.S. cities, counties, and zip codes on our site: City-data.com.


Reply
Please update this thread with any new information or opinions. This open thread is still read by thousands of people, so we encourage all additional points of view.

Quick Reply
Message:

Over $104,000 in prizes was already given out to active posters on our forum and additional giveaways are planned!

Go Back   City-Data Forum > General Forums > Science and Technology > Internet
Follow City-Data.com founder on our Forum or

All times are GMT -6. The time now is 01:27 AM.

© 2005-2019, Advameg, Inc. · Please obey Forum Rules · Terms of Use and Privacy Policy · Bug Bounty

City-Data.com - Archive 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35 - Top