1 |
On Monday 28 Mar 2016 09:26:54 Max R.D. Parmer wrote: |
2 |
> Ahh, OK. So secure communications between all these clients. |
3 |
> |
4 |
> The two big players for client-side encryption for email or messaging |
5 |
> data would be GPG and OTR; |
6 |
|
7 |
Also S/MIME encryption of the email message body using SSL certificates |
8 |
achieves the same end result (i.e. encrypted payload) as GnuPG offers. For |
9 |
GPG you may need a plugin (e.g. enigmail on T'bird) or something similar for |
10 |
phone clients, but S/MIME is usually available by default for most email |
11 |
clients and platforms. |
12 |
|
13 |
A word of caution: |
14 |
|
15 |
Snowden warned us that the end devices do not possess strong enough randomness |
16 |
generators to ensure that the encryption they perform cannot be reverse |
17 |
engineered. |
18 |
|
19 |
A recent article shared on this M/L also showed that anything with Intel |
20 |
inside® can be deemed as intentionally weakened to enable potential |
21 |
interference with our privacy. |
22 |
|
23 |
Therefore treat your encrypted communications and their content with caution, |
24 |
because you don't know how private these may remain in the future. |
25 |
|
26 |
-- |
27 |
Regards, |
28 |
Mick |