Tor says it’s "still safe" amid reports of police deanonymizing users - eviltoast
  • MigratingtoLemmy@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    3 months ago

    This is a good read. I think it’s a good solution if it can be implemented properly. Are there applications you know of that allow you to personally (manually) encrypt text and communicate with another person like GPG does?

      • MigratingtoLemmy@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        3 months ago

        And using these apps is not always an option. I like simplex, but sometimes email is one of the only options. PGP can be used agnostic of the technology used for transmission, and that’s exactly what we need to keep more people private instead of forcing them into a few select applications. If Diffie-Helman can’t be used in a transport-agnostic fashion then I do not see much progress in this direction.

        • Possibly linux@lemmy.zip
          link
          fedilink
          English
          arrow-up
          1
          ·
          3 months ago

          Just keep in mind PGP is weaker in the sense that it is easier to break due to its shared key.

          Email itself is not exactly a secure protocol

          • MigratingtoLemmy@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            ·
            3 months ago

            Shared key??? PGP works on a public-private key-pair, and unless you’re giving out your private key, it’s not shared with anyone. This is blatant misinformation

            • Possibly linux@lemmy.zip
              link
              fedilink
              English
              arrow-up
              1
              ·
              3 months ago

              The public key is public and there is a single vulnerable private key. Someone can identify you with the use of your public key and if someone gets access to your private key (maybe a solen device) they can decrypt logged messages that used that key. This means they can still get access even if you deleted the messages off your device.

              • MigratingtoLemmy@lemmy.world
                link
                fedilink
                English
                arrow-up
                1
                ·
                3 months ago

                That is indeed a disadvantage of PGP. Unfortunately, it is the most portable method of encryption text at rest at the moment. The moment somebody manages to figure out a way to use the Diffie-Hellman algorithm in a portable manner, I’m sure a lot of people will consider that a viable alternative. Till then, learn about disk encryption to keep your keys safe