Crypto So Easy My Mother Uses It

If you’ve been around the blog for a while, you know that I’m a big fan of the use of encryption for the sake of privacy.  I’ve ranted about PGP and S/MIME, tried to break steganography and complained about the privacy issues I face as a Gmail user. ...
What The x.509 Is Wrong With Gmail?

What The x.509 Is Wrong With Gmail?

You don’t often stop to think about x.509 and the Public Key Infrastructure (PKI) that authenticates our Internet connections. Allow me to explain why you should. Transport Layer Security (TLS) uses x.509 certificates to authenticate connections. In your every-day use...

Target: Gmail

Image by bloggingberlin Your e-mail account is probably the most valuable online account you control. The security of most of your other accounts depends on the security of your e-mail account. (Think I’m wrong? Have you ever recovered a lost password?) For this...

Keeping E-mail Private (Revisited)

About a year ago, I wrote a post titled “Keeping E-mail Private”.  Thinking back over the last five months, my advice seems woefully inadequate.  To give the matter of private communications a more proper treatment, I’m going to write a series of...

Encrypting Your Messages With OpenPGP.js

Terrible mashup of OpenPGP.js logo and source code by the author (because nothing says “Where’s the source?” like a bad logo.) Last time I wrote, I showed you how to use Braintree.js to encrypt form values. I even built a contact form to do it. It occurred to me that...