I was totally unprepared for today’s bombshell revelations describing the NSA’s efforts to defeat encryption. Not only does the worst possible hypothetical I discussed appear to be true, but it’s true on a scale I couldn’t even imagine. I’m no longer the crank. I wasn’t even close to cranky enough.Source: On the NSA
For all my fellow cranks out there, a concise list of my free open source software (FOSS) favorites. All these solutions take advantage of AES-256 encryption.
Here is what you will find in this blog entry:
- Encrypted Email and Encryption Tools
- Encrypt Your Files and/or Folders, and/or external USB drives
- Security and Encryption in Your Internet Browser
- Mobile Phone Apps
At the end of each section, I share my recommendation.
1. Encrypted Email & Encryption Tools
- Non-US-based Encrypted email service providers:
- ProtonMail (Swiss-based, end to end encrypted email)
- Tutanota (German-based, end to end encrypted email). FREE for 1gig of space.
- Fourmilab’s web page (save it on your computer locally) on your own computer to encrypt text messages. Use secure passwords.
- On Linux, use KGPG; on Mac, GPGTools; on Windows, GPG4Win
- SecureMail for Gmail (Chrome browser add-on)
- Mailvelope for your Browser (add-on)
Recommendation: For end to end encrypted email, I use Tutanota.de currently, but I would also use Fourmilab’s encryption AES-256 algorithm to encrypt email content (metadata is still exposed).
2. Encrypt Your Files/Folders
- Use TAILS Disk Utilities to create encrypted USB External Drives; read this tutorial
- Minilock – From their web site: “miniLock uses your email and secret passphrase to generate a miniLock ID. miniLock IDs are small and easy to share online — anyone can use your ID to encrypt files to you, and you can encrypt files to friends using their miniLock IDs.” It is quite easy to use, even on a Chromebook.
- Secure Space Encryptor (SSE) tool (lets you encrypt folders of files into one). Runs on Win/Mac/Linux. Watch this video.
- AESCrypt.com (encrypts file by file, available for Win/Mac/Linux)
- Axantum AxCrypt (open source) – works great on Windows, not so much on other platforms (unless you’re using WINE)
- KeepassX and never save your Keepassx file on Dropbox or anywhere in cloud.
- OnionShare. Here is some more info about it: OnionShare lets you securely and anonymously share a file of any size with someone.
- BitTorrent Sync.
3. Security & Encryption in Your Internet Browser
- TAILS – This is the way to go and works great. Read the Linux Journal for getting started guide, although TAILS Documentation is easy to follow. This is a very nice package for encrypting everything and also supports encrypted USB external drives.
- Use Tor Browser Project (the 2.4 version, not 2.3) to protect your location; it comes with HTTPS Everywhere
- Browser add-ons:
- AdBlock for Firefox/Chrome – Blocks banners, pop-ups and video ads – even on Facebook and YouTube and Protects your online privacy
- Facebook is notified whenever you visit one of the more than one million sites on the web that use Facebook Connect and has a history of leaking personally-identifiable information to third parties. This turns off data flow.
- Priv3 for Firefox – The Priv3 Firefox extension lets you remain logged in to the social networking sites you use and still browse the web, knowing that those third-party sites only learn where you go on the web when you want them to.
- Ghostery – Ghostery looks for third-party page elements (or “trackers”) on the web pages you visit and notifies you that these things are present, and which companies operate them. If you wish, choose to block the trackers they operate.
- Do Not Track Plus, and for fun,
- HTTPS Everywhere
4. Mobile Phone Apps
- Telegram – Works on iOS and Android to send end-to-end encrypted SMS. Offers text, image and voice messages that are encrypted if you use their encrypted chat option.
- Wickr – https://www.mywickr.com/en/index.php
Great for text, voice messages that are encrypted and protected.
- Threema ($1.99) – Works on iOS and Android to send end-to-end encrypted SMS
- RedPhone – https://whispersystems.org/
Encrypted calls on Android phones.
- Finally, if you really want to attempt security from the operating system up, give Replicant OS for Android phones a try.
Recommendation: Of these messaging apps, I’m using the free open source and no-cost Telegram. Works great! As to Replicant OS, I’m not so sure and given my current phone so I can’t switch to that.
Check out Miguel’s Workshop Materials online at http://mglearns.wikispaces.com