Open Source Encryption Tools to Protect #Privacy #nsa (Updated 1/03/2015)
I was totally unprepared for today's bombshell revelations describing the NSA's efforts to defeat encryption. Not only does the worst possible hypothetical I discussed appear to be true, but it's true on a scale I couldn't even imagine. I'm no longer the crank. I wasn't even close to cranky enough. Source: On the NSAFor all my fellow cranks out there, a concise list of my free open source software (FOSS) favorites. All these solutions take advantage of AES-256 encryption.
Here is what you will find in this blog entry:
- Encrypted Email and Encryption Tools
- Encrypt Your Files and/or Folders, and/or external USB drives
- Security and Encryption in Your Internet Browser
- Mobile Phone Apps
At the end of each section, I share my recommendation.
1. Encrypted Email & Encryption Tools
- Non-US-based Encrypted email service providers:
- ProtonMail (Swiss-based, end to end encrypted email)
- Tutanota (German-based, end to end encrypted email). FREE for 1gig of space.
- Email client with PGP/GPG Support:
- For encrypting email messages:
- Use TAILS Disk Utilities to create encrypted USB External Drives; read this tutorial
- Minilock - From their web site: "miniLock uses your email and secret passphrase to generate a miniLock ID. miniLock IDs are small and easy to share online — anyone can use your ID to encrypt files to you, and you can encrypt files to friends using their miniLock IDs." It is quite easy to use, even on a Chromebook.
- Secure Space Encryptor (SSE) tool (lets you encrypt folders of files into one). Runs on Win/Mac/Linux. Watch this video. Also available for iOS devices: ParanoiaWorks' Text Encryption on iOS
- AESCrypt.com (encrypts file by file, available for Win/Mac/Linux) - This also enjoys solutions for Android and iOS devices ($1.99 per app).
- VeraCrypt (creates an encrypted container file) - This replaces TrueCrypt and enjoys higher security.
- For passwords security:
- KeepassX (or Keepass2) and never save your Keepass file on Dropbox or anywhere in cloud. If on a Chromebook, use BrowsePass to access your Keepass2 file (*.kdbx).
- For encrypted chat/messaging sessions (good luck with this...encrypt your text on top of this):
- Share top secret files (encrypt them) via the Web using...
Recommendation: TAILS is my new friend for encrypted content, and I often use the Disk Utility to encrypt external USB drives now that Truecrypt is defunct. I also use Keepassx to track my passwords. I wish more educators would take advantage of these tools since that would help prevent data breaches of student/staff personally identifiable information!
- TAILS - This is the way to go and works great. Read the Linux Journal for getting started guide, although TAILS Documentation is easy to follow. This is a very nice package for encrypting everything and also supports encrypted USB external drives.
- Use Tor Browser Project (the 2.4 version, not 2.3) to protect your location; it comes with HTTPS Everywhere
- Browser add-ons:
- AdBlock for Firefox/Chrome - Blocks banners, pop-ups and video ads - even on Facebook and YouTube and Protects your online privacy
- Facebook is notified whenever you visit one of the more than one million sites on the web that use Facebook Connect and has a history of leaking personally-identifiable information to third parties. This turns off data flow.
- Priv3 for Firefox - The Priv3 Firefox extension lets you remain logged in to the social networking sites you use and still browse the web, knowing that those third-party sites only learn where you go on the web when you want them to.
- Ghostery - Ghostery looks for third-party page elements (or "trackers") on the web pages you visit and notifies you that these things are present, and which companies operate them. If you wish, choose to block the trackers they operate.
- Do Not Track Plus, and for fun,
- HTTPS Everywhere
Recommendation: Use TAILS if you must be encrypted. Otherwise, adding all this stuff to your browser of choice will be a pain.
4. Mobile Phone Apps
4. Mobile Phone Apps
- Telegram - Works on iOS and Android to send end-to-end encrypted SMS. Offers text, image and voice messages that are encrypted if you use their encrypted chat option.
- Wickr - https://www.mywickr.com/en/index.php
Great for text, voice messages that are encrypted and protected.
- RedPhone - https://whispersystems.org/
Encrypted calls on Android phones.
- Finally, if you really want to attempt security from the operating system up, give Replicant OS for Android phones a try.
Check out Miguel's Workshop Materials online at http://mglearns.wikispaces.com
Everything posted on Miguel Guhlin's blogs/wikis are his personal opinion and do not necessarily represent the views of his employer(s) or its clients. Read Full Disclosure
bullrun encryption free software freedom liberty mac mguhlin national security agency nsa obama open source prism privacy protection security windows