Microsoft is working on a new encryption algorithm for healthcare sector. Algortihm which called “SEAL” is a homomorphic encryption algorithm and allows querying medical data without decryption.
-sleek user interface
-supports 3 languages at interface (english, deutsch, french)
-export keys as json
-full openpgp implementation
-lavaboom sync to host keys
-yubikey support for premium users (should be for anyone)
-Protected by Switzerland privacy laws
-Custom css support
-One domain alias (works with .ch and .com domains)
-Extra box password to reach content (2nd auth)
-Full disk encryption
-Default Delivery mode
-one username alias also on package (You can use email@example.com and yournamesomething@tutanota both in one mailbox)
-minimalist, fast interface
-tutanota means “secure message” in latin
Feature Lavaboom Protonmail Tutanota SSL (Qualys Degree) A+ (4096bits) A+ (4096bits) A (2048bits) Open Source Has Github Repo (?) Has Github repo Key Management + -(an empty tab for it) - Encryption OpenPGP Aes256 bits (CBC mode ?) Aes 128 bits Plans 500mb free 1gb beta 1gb beta 1gb beta 5gb promotion 2gb kickstarter 15gb premium
Final opinions: These European providers has good European laws to hide behind, but they are not generous about quotas. Protonmail has left big questions on my mind when i tried to inspect the code. Protonmail has to be open source it rapidly to earn trust. My Points (over 10): Lavaboom 8, Tutanota 7, Protonmail 5.
I thank to all providers for letting me accept beta programs.
After Edward Snowdens revelations people have worried about privacy. Many believes random number generators in openssl and other projects corrupted from NSA.
OneRNG generates roughly 320kbits of entropy per second, if you need more than that you can connect multiple OneRNG devices to the same machine
OneRNG has two random sources – the first is an avalanche diode that generates ‘quantum noise’. OneRNG sample this data in the analog domain which generates ~7 bits of entropy per byte. The second is an RF receiver that operates in and around the 2.4GHz wifi band – it runs a detuned receiver that frequency hops at random times to random channels and returns the least significant bit from the (failed) demodulator -this returns significantly closer to 8 bits per byte of entropy data.
author of cryptocat and minilock Nadim Kobeissi has created a new security application called Peerio. Peerio combines secure messaging, file sharing and storage.
Peerio lets you send messages, share files, and store documents online — securely and privately. Free cloud storage keeps your files online and ready to send from anywhere. It’s as easy to use as e-mail, but with a significant additional layer of security — end-to-end encryption.
You can try Peerio from google webstore: https://chrome.google.com/webstore/detail/peerio/khipofjlgnklanmhddccafbogkkhmdpm;
Sources are here
#snoopsnitch is an Android app that collects and analyzes mobile radio data to make you aware of your mobile network security and to warn you about threats like fake base stations (IMSI catchers), user tracking and over-the-air updates. With SnoopSnitch you can use the data collected in the GSM Security Map at gsmmap.org and contribute your own data to GSM Map.
This application currently only works on Android phones with a Qualcomm chipset and a stock Android ROM (or a suitable custom ROM with Qualcomm DIAG driver). It requires root priviliges to capture mobile network data.
The following devices have been found to be incompatible and can not be used with SnoopSnitch:
git clone --recursive https://opensource.srlabs.de/git/snoopsnitch.git
TrueCrypt Successor CipherSheds Alpha Version Released. You can try it from here.
-They changed truecrypt driver but not the documentation. This cause software not working with truecrypt on same system.
-They really need a good icon artist.
Benetech a non-profit company from silicon valley made the Martus; an encrypted bulletin board for activists. Martus simply uploading charts, images and xml data to its server with a strong crypto public key system. Martus servers never hold the key and only authorized users can see the information.
How it works;