New Generation Secure Mail Providers: Lavaboom vs Protonmail vs Tutanota

Lavaboom is an open source end to end encrypted email provider from Germany

Key Features:
-sleek user interface
-supports 3 languages at interface (english, deutsch, french)
-key-pair management
-export keys as json
-full openpgp implementation
-lavaboom sync to host keys
-yubikey support for premium users (should be for anyone)

Protonmail is a swiss based email provider. All hosting is located at Switzerland.

Key Features:
-Protected by Switzerland privacy laws
-Custom css support
-One domain alias (works with .ch and .com domains)
-Extra box password to reach content (2nd auth)
-Full disk encryption


Tutanota is another Germany based hence they claim to be protective against NSA wiretapping.

Key Features:
-Default Delivery mode
-one username alias also on package (You can use and yournamesomething@tutanota both in one mailbox)
-minimalist, fast interface
-mobile applications
-tutanota means “secure message” in latin


Feature             Lavaboom          Protonmail                Tutanota

SSL (Qualys Degree) A+ (4096bits)     A+ (4096bits)             A (2048bits)

Open Source         Has Github Repo   (?)                       Has Github repo

Key Management      +                 -(an empty tab for it)    -

Encryption          OpenPGP            Aes256 bits (CBC mode ?)  Aes 128 bits

Plans               500mb free         1gb beta                  1gb beta
                    1gb beta                                     5gb promotion
                    2gb kickstarter
                    15gb premium

Final opinions: These European providers has good European laws to hide behind, but they are not generous about quotas. Protonmail has left big questions on my mind when i tried to inspect the code. Protonmail has to be open source it rapidly to earn trust. My Points (over 10): Lavaboom 8, Tutanota 7, Protonmail 5.

I thank to all providers for letting me accept beta programs.

Kickstarter Project OneRNG offers true random from noise

After Edward Snowdens revelations people have worried about privacy. Many believes random number generators in openssl and other projects corrupted from NSA.

OneRNG generates roughly 320kbits of entropy per second, if you need more than that you can connect multiple OneRNG devices to the same machine


OneRNG has  two random sources – the first is an avalanche diode that generates ‘quantum noise’. OneRNG sample this data in the analog domain which generates ~7 bits of entropy per byte. The second is an RF receiver that operates in and around the 2.4GHz wifi band – it runs a detuned receiver that frequency hops at random times to random channels and returns the least significant bit from the (failed) demodulator -this returns significantly closer to 8 bits per byte of entropy data.

#Peerio offers secure storage and secure messaging

author of cryptocat and minilock Nadim Kobeissi has created a new security application called Peerio. Peerio combines secure messaging, file sharing and storage.
Peerio lets you send messages, share files, and store documents online — securely and privately. Free cloud storage keeps your files online and ready to send from anywhere. It’s as easy to use as e-mail, but with a significant additional layer of security — end-to-end encryption.



You can try Peerio from google webstore:;

Sources are here








Surveillance Detection Application #snoopsnitch

#snoopsnitch is an Android app that collects and analyzes mobile radio data to make you aware of your mobile network security and to warn you about threats like fake base stations (IMSI catchers), user tracking and over-the-air updates. With SnoopSnitch you can use the data collected in the GSM Security Map at and contribute your own data to GSM Map.

sc_catcher_hour sc_dashboard sc_map_details sc_map_overview

This application currently only works on Android phones with a Qualcomm chipset and a stock Android ROM (or a suitable custom ROM with Qualcomm DIAG driver). It requires root priviliges to capture mobile network data.


  • Qualcomm-based Android phone (see device list)
  • Stock Android ROM, version 4.1 or later
    Note: Custom Android ROMs like CyanogenMod may or may not work, depending on the availability of a Qualcomm DIAG kernel driver (DIAG_CHAR).
  • Root privileges on phone

Incompatible Devices:

The following devices have been found to be incompatible and can not be used with SnoopSnitch:

  • Unsupported. Devices with custom ROM such as CyanogenMod which lacks the Qualcomm DIAG kernel driver (DIAG_CHAR)
  • Unsupported. Every device without Qualcomm chipset
  • Unsupported. Samsung Galaxy S2 & S3
  • Unsupported. Nexus 5 with stock Android
  • Unsupported. Huawei Ascend Y300


SnoopSnitch is released under the GPL v3 license (cf. source:COPYING). The app is known to built under Linux and OS X, see source:README for build instructions.

Hackers of Benetech made Encrypted Bulletin Board for Human rights and civil liberties activists

Benetech a non-profit company from silicon valley made the Martus;  an encrypted bulletin board for activists. Martus simply uploading charts, images and xml data to its server with a strong crypto public key system. Martus servers never hold the key and only authorized users can see the information.

How it works;



martus working diagram

martus working diagram