Reply
Thread Tools
chemist's Avatar
Administrator | Posts: 939 | Thanked: 1,495 times | Joined on Sep 2009 @ Germany
#1
http://maemo.org/community/brainstor...rage_joe_ready

There is no GnuPG GPG PGP environment, no dm-crypt, no blowfish-button in file-context-menus and no GU interfaces ready to use for Joe Average!

There was already the question of securing private data.


What is the best way to get email/file/addressbook de/encryption/signing to Joe and his friends.

Should it be part of all programs containing private data? Should there be a Privacy Manager Tool to manage keys keyrings, encrypted files, addressbooks and calendar entries?


Encrypting the whole filesystem is neither a solution for the private data nor for email. It slows down the system and drains the battery. On my Netbook its costs are about 1-2Watts, speed I dont realy recognize.

Last edited by chemist; 2010-01-12 at 12:33. Reason: Title Change
 

The Following User Says Thank You to chemist For This Useful Post:
chemist's Avatar
Administrator | Posts: 939 | Thanked: 1,495 times | Joined on Sep 2009 @ Germany
#2
Andre Klapper was kind enough to further note down that there is a bugreport
and also posted a comment to the bugreport linking back to the brainstorm item. Thanks!

Last edited by chemist; 2009-11-16 at 14:24.
 
Posts: 341 | Thanked: 64 times | Joined on May 2009
#3
give me truecrypt on maemo and i'll be happy.


www.truecrypt.org
 
Andre Klapper's Avatar
Posts: 1,665 | Thanked: 1,646 times | Joined on Jun 2008 @ Praha, Czech Republic
#4
Originally Posted by REMFwhoopitydo View Post
give me truecrypt on maemo and i'll be happy.
Please add it as a solution to the brainstorm ticket.
__________________
maemo.org Bugmaster
 
Posts: 22 | Thanked: 8 times | Joined on Nov 2009
#5
How about eCryptfs? (it's a kernel module nowadays)
Can you mount stuff via the busybox shell?
 
chemist's Avatar
Administrator | Posts: 939 | Thanked: 1,495 times | Joined on Sep 2009 @ Germany
#6
Originally Posted by REMFwhoopitydo View Post
give me truecrypt on maemo and i'll be happy.


www.truecrypt.org
so you are not average joe, are you?

truecrypt doesnt help with "modest got no pgp/mime handling"
truecrypt does not manage your gpg keys.

truecrypt does crypt your filesystem and thats not a solution for average joe (I script that faster as joe installs truecrypt and gets it working, the problem with large crypts is that it drains battery)

to deliver to windows, as mass device you could decrypt a partition setup with truecrypt as it is available for windows (AFAIK) but you need to install it and configure it

summary:
truecrypt (in my eyes) is a standalone solution for encrypting partitions and it makes them also available while in massstorage mode within YOUR windows. (same goes for LUKS I know)


for eCryptfs quiet the same answer apart of I dont know another OS than unix based to work with it
It would be nice to be able to read/write eCryptfs files in a non-Linux environment. Unfortunately, there is no Windows port available...

Last edited by chemist; 2009-11-16 at 18:03.
 
Posts: 968 | Thanked: 974 times | Joined on Nov 2008 @ Ohio
#7
I use truecrypt on my computers at work/home and would love to see it in Maemo.

You do not have to encrypt the whole partition. You can create an encrypted file (up to 4GB on FAT32), mount that and store important files in it. The file would be accessible to both window and linux when exported via usb. I believe that there is a "portable/thumb drive" version for windows that does not need to be installed to run.

Best of all, if you don't need to access the files, truecrypt does not need to be running (ie no battery drain).

This doesn't address all the issues, but may address enough for the average joe to use (with a gui front end) easily to protect important data.
__________________
*Consumer*, not a developer! I apologize for any inconvenience.
My script to backup /home and /opt
Samsung Galaxy S Vibrant, Huawei S7, N900(retired), N800(retired)
 

The Following User Says Thank You to lemmyslender For This Useful Post:
chemist's Avatar
Administrator | Posts: 939 | Thanked: 1,495 times | Joined on Sep 2009 @ Germany
#8
Originally Posted by lemmyslender View Post
I believe that there is a "portable/thumb drive" version for windows that does not need to be installed to run.
good to know so truecrypt would be the env for files (includes partitions as we all know "everything is a file)I want to share within massstorage mode?!

Originally Posted by lemmyslender View Post
Best of all, if you don't need to access the files, truecrypt does not need to be running (ie no battery drain).
you leave out addressbook and calendar if you think of unmounting. In any other case, most crypting softwares do need the juice while reading and writing files but none while idle... (at least the stuff I think of)

Originally Posted by lemmyslender View Post
This doesn't address all the issues, but may address enough for the average joe to use (with a gui front end) easily to protect important data.
but joe doesnt know which data is important! joe doesnt know that all his emails send are scanned! joe doesnt know that all data he sends via ICQ is from then on owned by ICQ Inc. and so on. (at this point I recognize I missed a jabber client or xmpp at all.) the worse is that joe does not care. so we, as people who care, should give a startup for joe, showing what we do and was is recommended.

joe would crypt some passwords which are guessable anyway, and some files... (next thought: passwords need to be checked and rated for security)
 
allnameswereout's Avatar
Posts: 3,397 | Thanked: 1,198 times | Joined on Jul 2008 @ Netherlands
#9
Hmm there are a few other threads about this subject. It is also related to authentication about which we have also some threads.

One problem with cryptography (don't call it 'encryption') is that it only works if you trust it. In order to trust it, you have to understand it. While making it as less complex as possible is a good aim, many people won't understand how cryptography works. So a solution which handles this must keep that in mind. (See for example how Mozilla Firefox deals with SSL and the various implications of this.)

Some related threads:
http://talk.maemo.org/showthread.php...689#post381689
http://talk.maemo.org/showthread.php?t=32672
http://talk.maemo.org/showthread.php?t=33304
__________________
Goosfraba! All text written by allnameswereout is public domain unless stated otherwise. Thank you for sharing your output!
 
Posts: 1,950 | Thanked: 1,165 times | Joined on Jan 2008 @ Seattle, USA
#10
If you aren't aware, there was some work done putting a maemo front end on true-crypt, but it never got to a point I would call complete or elegant. It's called EasyCrypt:

http://talk.maemo.org/showthread.php?t=15984
 

The Following User Says Thank You to GeraldKo For This Useful Post:
Reply

Thread Tools

 
Forum Jump


All times are GMT. The time now is 14:28.