The Only Email System The NSA Can't Access

originally posted by: MystikMushroom
In any case the NSA can probably break any encryption out there given enough time. If they do have a working quantum computer someplace, virtually any kind of algorithm could be cracked.

The way this is done is impossible to crack on the company's side of things.

However there's two major flaws.
1 - Using the service would flag you as a potential terrorist, whistleblower, major criminal, rubbish spy etc...
2 - The amount of computer knowledge and cryptography information a user would need to know to use this properly is above University level.
3 - The tiniest error on the senders part will provide all the info required to decrypt that and future messages.

It's a brilliant system but it's not for the average joe to use.

a reply to: purplemer

I have had an account for a week now it works well. I wonder how strong their dual encryption is. They have a password for the account and one for the message. They have the ability to make the message expire, and the email the receiver gets is a link with a password hint only they should know. It looks and sounds like a good idea but unless you are a mathematician and they share the algorithm who knows, the NSA has the market cornered on eggheads. But it's better than what we have now. The servers are located in Switzerland thats why the URL has the .ch domain identifier, and that doesn't mean China.

this is effin awesome!

If the feds couldn't crack an encryption in mere seconds or minutes, it would probably be illegal. They wouldn't let something exist on the open market that they weren't already light years ahead of.

originally posted by: Sparky63
Government spook #1: There are people who don't want their email spied on
Government spook #2: The only people who don't want their email spied on are people with something to hide.
Government spook #1: We need to spy on their email for the sake of "national security".
Government spook #2: We can set up a site that claims to provide unbreakable encryption.
Government spook #1: But, we of course have the key...LOL.
Government spook #2: We will call it, "Protonmail" and claim it was developed by some egghead.

Government spook #1: The sheeple will eat this up and join by the thousands. All hail, "Big Brother"!

My thoughts exactly.

The NSA tech boys are going... Hmm, interesting, ok, let's match wits..

It would take a very sad individual to *want* to go through my email. It's incredibly boring, mostly composed of bills, receipts, and the occasional message from "Tar4", who apparently "wants me"

Maybe I should reply to "Tar4"?

a reply to: purplemer
Ahhh,no.

unseen.is...

This is completely laughable if you ask me. Lavabit had some of the best email encryption in the industry, yet the feds were able to convince Lavabit to give up their customer privacy. The only truly secure messaging service that I know of is Bitmessage because it's completely decentralized and open source, but it's not entirely useful because you'll miss messages unless you have the client running all the time.

originally posted by: imwilliam
A old fashioned one time pad, when properly used, can't be broken. The Verona intercepts were only broken because the onetime pad was reused.

If I was going to try and create a bulletproof way of communication, I'd try and apply those principals.

Yes, but one-time pads are impractical as all hell. That's the dilemma.

No practical encryption is unbreakable, but the most secure encryption is the slowest to crack. One idea I'd had - specifically targeted at NSA-style traffic monitoring - is flood them with data. Force them to keep track of everything - every single packet. Make them record every connection packet, every ping packet, the works.

A lot could be done to better secure programs. A randomly rotating keypad, which requires users to click the buttons rather than enter a password on a keyboard, ought to be more secure at the application level. That sort of thing - overwhelm counter encryption efforts with data that they have to track in order to make sense of things.

originally posted by: ChaoticOrder
This is completely laughable if you ask me. Lavabit had some of the best email encryption in the industry, yet the feds were able to convince Lavabit to give up their customer privacy. The only truly secure messaging service that I know of is Bitmessage because it's completely decentralized and open source, but it's not entirely useful because you'll miss messages unless you have the client running all the time.

That is why they have decided to base in Switerland.

“One of the key things we want to do is control our servers and make sure all the servers are in Switzerland which will increase privacy because Switzerland doesn’t do things like seize servers or tape conversations,” says Yen. This will help avoid a situation where the U.S government could forcibly shut them down, says Yen, similar to what happened to Lavabit last yea

I guess wed better start digging out those Enigma machines to start using again :-)

With enough computer power [like that of the NSA server farms] one can crack just about anything.

Also: encryption means nothing if they use malware/spywhere/trojans/key loggers, on your actual machine to fish your password anyway, then they dont even need to break the encryption.

I am patiently waiting for bugs to be made known for this 'secure' site:

sgrouples.com...#

Join the Online Privacy Revolution

is the tag line for this site,
"sgrouples" is on my back burner I have no burning desire to rush in to something strange

just a FYI, alert, sharing

a reply to: MystikMushroom

Yes, but what about encryption generated by another quantum computer...would that be so easy to crack, even using another quantum computer?

So, long story short, the encyrption key is stored on the users machine. If the NSA wants to read your e-mail, they just need to hack into your machine and 'steal' the encryption key or install a keylogger...

The best way would be to use a combination of a non technology encryption and an encrypted email system.

i.e the sender and receiver of the email has a book, the email is typed out as page1, paparagrath2, word 3 (for example).

this is then entered into the email and encrypted and sent.

The receiver has the same book and strings the received email and the book back into the sentence.

Best of both worlds an uncrackable.

think out of the box and it's achievable

originally posted by: TXRabbit
The only messaging system that the NSA can't monitor?

Except snail mail is easily monitored. They've been doing it for over a century, and recently ramped up the monitoring to the point where almost all of the paper mail is getting scanned before being delivered.

Click here for relevant article.

Until quantum computers comes about there's not going to be a secure email service, and even then I wouldn't be shocked if governments can get around that too.

what about this

www.xahive.com


they look like an instant messaging version of this secure email system.

I like the fact they can see what I am saying- lol

a reply to: purplemer

Thank you, this is awesome and timely.