The following paragraph is about Siddarth Jaiswal who is a fresh IIM-A grad from PGP batch of 08. He has given up the big placement packages, high dignified positions to pursue Entrepreneurship as his career. He is second after Sarath Babu from the prestigious IIM's who has choosen to  pursue his Entrepreneurial career in field relating to Human Consumption. He has decided to launch a series of 'Joos' bar which offers 50 varieties of natural beverages and drinks. He is one among the eleven students from his batch who has given up the big packages offered and has decided to pursue Entrepreneurship as his career. 

Source: Times of India, August 12, 2008

Also wenn ihr einen S/MIME fähigen Clienten wie z.b. Outlook, Thunderbird, oder Evolution Mail benutzt dann könnt ihr das ganze recht einfach haben.

Eigentlich müsst ihr euch in diesem fall nur ein kostenlose Zertifikat bei einer beliebigen Certificate Authority (CA) austellen lassen.

Bei den unten genannten Anbietern könnt ihr euch sowas umsonst ausstellen lassen:

Thawe

Comodo

Solltet ihr zufällig Online Banling mit HBCI Chipkarte betreiben könnt ihr euere mails auch mit euerer Bankkarte signieren, dafür müsst ihr euch aber selbst ein wenig einlesen, da viele Banken ihr eigense Süppchen kochen.

Solltet ihr überlegen  euch sowas anzuschaffen wäre es sinvoll sich gleich ein qualifiziertes Zertifikat zu bersorgen, da ihr damit dann auch rechtsverbindliche Handlungen tätigen könnt. Das ganze kann euch aber bis zu 20€ im Jahr kosten.

Wer sich mit Onlinebanking & Co genauer auseinandersetzen möchte, wäre gut beraten sich die aktuelle C`T 17/2008 zu kaufen.

Zurück zur Mail verschlüsselung, grundsätzlich gilt das beide Kommunikationspartner ein Zertifikat haben müssen, da es sich hier um ein asynchrones Verfahren handelt.

Das heist also das ihr den öffentlichen Teil des Zertifikats einer Person braucht mit der ihr Kommunizieren wollt. Das bekommt ihr ganz einfach indem ihr Euch von der betreffenden Person eine Signierte Mail schicken lasst. Die meißten mail Clienten sollten es dann automatisch in den richtigen Kontakt importieren.

Das wars auch schon mit S/MIME.

Sollte ihr eher auf Open Source stehen werdet ihr wohl eher zu PGP tendieren. Das wird allerdings bei den meisten mail Clients nicht von Hausaus unterstützt. Zwar giebt es für fast alle Plugins aber es ist nachwievor umständlicher in der einrichtung.

Es hatt natürlich auch Vorteile, z.b. könnt ihr mir PGP eigentlich alles verschlüsseln und signieren. Allerdings ist in Deutschland keine dieser Signaturen rechtskräftig.

Grundsätzlich kann man also sagen das PGP eher für den notorischen Unix User gedacht ist.

Wer es nichtsdedotrotz ausprobieren möchte, dem sei GnuPG bzw. das Komplettpaket von GPG4win ans Herz gelegt.

• Get yourself a LaunchPad account.

• Here's a neat and clear doc about setting up your 'Keys' : https://help.ubuntu.com/community/GnuPrivacyGuardHowto ( The doc was so clear that I didnt want to recreate it here. )
  

• Once you finish setting up your signs, Upload the keys to Ubuntu Keyserver and Launchpad.

• Go to https://launchpad.net/codeofconduct and complete the steps to become a Ubuntero !

Instructions of how to digital sign your documents, encrypt/decrypt messages is found in the first link. And if you are using FireFox, dont forget to install FireGPG extension.

My Public Key is :

Click to Import the file

Or Find Me on Ubuntu Keyserver

Crypto is fun :) !

Above Emacs Lisp code allows one to send PGP signed messages, in the way preferred by recipient. e.g. There are some lists which don't allow multipart/signed message, so in order to post to those lists, one needs to send inline PGP signed messages. This piece of code takes care of all that. All you need to do is to specify email addresses which don't acceptmultipart/signed messages using M-x customize-variable my-inline-pgp-mails-list. Happy Gnusing... ;)

P.S. The code is also pasted at paste.lisp.org.

The activists are all charged with being members of a criminal organisation. Some of the evidence for this is that some of the 20 arrested use PGP to encrypt their data to prevent it being intercepted. Basically using PGP is like locking your front door when you go out or simply taking a precaution to make sure noone reads your mail who don't want reading your mail. So basically these folks are accused of criminality for wanting to keep their private correspondence private.

Of course in this country it is already illegal to refuse to give the old bill any passwords they ask for and you can be given a prison sentence for refusing. Hell, you can be given a prison sentence for forgetting your password if they really want in.

That this happened in Austria should not prove any less worrying for those of us in this country(UK) who want to keep our private data private. We already hear the old adage 'you've got nothing to fear if you've nothing to hide' rolled out about the forthcoming Orwellian disaster the ID card. Though given this governments history with private data it's more likely to turn into a Kafkaesque nightmare than an Orwellian one.

How long will it be I wonder til we hear that said about all of our e-mail and phone calls being intercepted or American intelligence agencies being given access to our personal data? The same was said when CCTV cameras were rolled out around the country. We were told that CCTV was going to help lower street crime, which was dropping anyway, and has it? Even the chief of the Met says that it has prevented less crime than it has helped solve i.e. not a lot. The one thing that it has achieved is reinforcing it in the minds of every single person living on this island - you are being watched.

But then again if you've nothing to hide.

Private companies offering to decode your genome for a price generally reaching thousand dollars exist and become famous nowadays. What is less known, is the Personal Genome Project, which is more a scientific project than a business project. The aim is to get "a critical mass of interested users, tools for obtaining and interpreting genome information, and supportive policy, research, and service communities." In other words, the PGP offers you to decode your genome for free. There are obviously counterparts to that. Your data will be used by scientists to perform research on it:

"We believe individuals from the general public have a vital role to play in making personal genomes useful. We are recruiting volunteers who are willing to share their genome sequence and many types of personal information with the research community and the general public, so that together we will be better able to advance our understanding of genetic and environmental contributions to human traits and to improve our ability to diagnose, treat, and prevent illness."

Although this is an interesting project, with ethical considerations and almost philanthropist purpose, we draw the attention of our readers on several points:

• First of all, PGP do not guarantee anonymity.
• PGP not only needs your DNA, but your medical records too and will ask for many details (allergies, immunizations, medical history, medications, physical traits and measurements, diet, ancestry, lifestyle, and environmental exposures). Participants will be asked to periodically update and add to this information.
• No result is guaranteed
• PGP will make use of your data for a period of 25 years.

People who want to get their own genome decoded still have the choice: a free decoding solution with no guarantee of results or privacy, or more expensive solutions with at least a high level of privacy and some results. The advantage of PGP still may be that with this 0$ offer, a large cohort of patients could be constituted. And the strength of genomic studies always relies in the number of samples available.

I'm just blown away. I didn't know I'd qualify for higher rates of both care and mobility, but I really feel that my condition has been validated by the fact that I'll be receiving those. Does that sound stupid? I really expected to have to fight more as most people have no idea about the traumas of having a painful Symphysis Pubis and the strain that it brings to your daily life and relationships. Now, when old people verbally abuse me on buses for sitting on the "save for disabled people and those with children" seats (yes, even though I have Michael, Henry and the pushchair with me) I will be able to whip out my bus pass and explain that I am disabled! Instead of having to weakly explain about my pains and subsequent painkillers.

In other news, new painkillers are making me sleep more hours of the day than I am awake - it might sound like a life to be in awe of but believe me when I tell you that simply is not the case. I hate every moment of Henry's life that I miss, I hate  my time without Michael and I HATE that Michael has to do EVERYTHING. I'm surprised he hasn't collapsed into a heap and refused to move ever again.

Or worse, walked away.

In fact, he's finally managing to get some sleep as  the good news has buoyed my excitement levels to a level above "blah" and I don't think I'll accidentally fall asleep and wake up in agony to find Henry jumping on my pelvis. Don't get me wrong, I'm not completely ruling it out as an option of things to come, I'm merely hoping that it won't happen today. Or in the next hour, at least!

Off to the GP I go when I get my bus form, and also then I will ask for a letter to be sent to my consultant as I've still not had an appointment letter through since my MRI scan and injections nearly 6 weeks ago in May!

I'm on the Occupational Therapy waiting list, awaiting a letter to see how many months wait I am likely to have; the lovely woman I spoke to said the current list is 5 months, but it's based on how much you need the help to a certain extent so she might be able to slot me in sooner as I'm struggling so much.

Henry is a menace to sofas from here to Babylon as he can now climb up them. There truly is no stopping our little intrepid explorer;  I think I must have been much like him at the same age. In most ways, it's wonderful to see him so full of life and movement, but in others I just want to cry for all that he reminds me of myself and how I wish I still was. Only with ever so slightly less drool. And more hair. And less of a delight with plugs and sockets....

PGP membuat sebuah session key, yaitu sebuah kunci rahasia berupa bilangan acak pada saat itu. Session Key ini berkerja dengan sangat aman, algoritma enkripsi konvesional yang cepat untuk meng-enkrip plaintext. Hasilnya adalah berupah chiper text. Sekali data dienkripsi, lalu session key ini dienkripsi lagi menggunakan kunci publik penerima. Session key yang terenkripsi kunci publik penerima dikirim dengan chipertext ke penerima.
Proses deskripsi bekerja sebaliknya, penerima menerima pesan lalu membuka pesan tersebut dengan kunci pribadinya, namun pesan tersebut masih terenkripsi dengan session key. Dengan menggunakan PGP, penerima mendekrip chipertext yang terenkripsi secara konvensional.
Sebuah kunci (key) adalah sebuah nilai yang bekerja dengan sebuah algoritma kriptografi untuk menghasilkan sebuah ciphertext yang sepesifik. Kunci pada dasarnya adalah bilangan yang besar.
Ukuran kunci publik dan ukuran kunci rahasia kriptograpi tidak saling barhubungan. Sebuah kunci 80-bit konvensional memiliki kekuatan setara dengan kunci publik 1024-bit. Sebuah kunci 128-bit konvensional setara dengan kunci publik 3000-bit. Jadi semakin besar kunci semakin aman, tetapi algoritma yang digunakan tiap tipe kriptograpi sangat berbeda dan perbendaan ini seperti orang membandingkan antara apel dengan jeruk.
Sementara secara matematis kunci publik dan pribadi berhubungan. Sangat sulit mendapatkan kunci pribadi hanya dengan memberikan kunci publiknya, tetapi mendapatkan kunci pribadi selalu memungkinkan jika diberikan waktu yang cukup dan kekuatan komputasi cukup.
Kunci disimpan dalam bentuk terinkripsi. PGP menyimpan kunci dalam 2 file pada dihardisk, satu untuk kunci publik dan satunya lagi untuk kunci pribadi. File-file ini disebut dengan keyrings. Dalam menggunakan PGP, secara khusus akan ditambahkan kunci publik penerima ke keyring publik. Kunci pribadi disimpan pada keyring pribadi. Jika kehilangan keyring pribadi, maka tidak akan dapat melakukan dekripsi terhadap informasi yang telah terenkripsi pada ring tersebut.

Det var då som Phil Zimmermann skapade programvaran PGP för att möjliggöra för privatpersoner att enkelt kryptera kommunikationen med varandra. Precis de argument som lyfts fram varför FRA-lagen är så förkastlig i ett öppet och demokratiskt samhälle, baserade Zimmermann sitt ställningstagande bakom utvecklandet av PGP:

Until recently, if the government wanted to violate the privacy of ordinary citizens, they had to expend a certain amount of expense and labor to intercept and steam open and read paper mail. [...] This is like catching one fish at a time, with a hook and line. Today, email can be routinely and automatically scanned for interesting keywords, on a vast scale, without detection. This is like driftnet fishing. And exponential growth in computer power is making the same thing possible with voice traffic.

Perhaps you think your email is legitimate enough that encryption is unwarranted. If you really are a law-abiding citizen with nothing to hide, then why don't you always send your paper mail on postcards? Why not submit to drug testing on demand? Why require a warrant for police searches of your house? Are you trying to hide something? If you hide your mail inside envelopes, does that mean you must be a subversive or a drug dealer, or maybe a paranoid nut? Do law-abiding citizens have any need to encrypt their email?

[...]

PGP empowers people to take their privacy into their own hands. There has been a growing social need for it. That's why I wrote it.

I helgens sändning av Medierna i P1, så intervjuades Ingvar Åkesson om den senaste tidens debatt och om FRA:s verksamhet lite allmänt. En frågeväxling som väckte mitt intresse var:

Reporter: [...] med tanke på att man krypterar, mejl till exempel, som man vill vara helt säker på ingen annan ska läsa... Pretty Good Privacy, PGP, till exempel. Men det knäcker den här superdatorn?
Åkesson: Ja, det är inte datorn som knäcker utan det är våra kryptologer.

Det var ju en romantisk syn på hur kryptologer arbetar - det kanske förklarar en del av den "information" från officiellt håll vi serverats de senaste dagarna.

För övrigt är Blogge återigen läsvärd, tillsammans med opassande och Svensson.

Det är värt att påpeka det återigen, att säkerhet kontra integritet inte är ett nollsummespel som företrädare ur säkerhets- och underrättelsetjänst vill få oss att tro (många politiker har de ju redan övertygat). Det handlar om frihet kontra kontroll. Om jag som medborgare känner ett behov att kryptera min e-post för att inte storebror staten ska kunna läsa den, så måste man väl fråga sig om det är rimligt med denna massavlyssning. Jag vet ju inte hur informationen kan komma att användas mot mig, eftersom mitt rena samvete kanske inte uppfattas så av övervakaren.

Vissa addons som jag har haft installerade en längre tid har jag lärt mig mer om. Jag syftar på Off-the-Record och kan även nämna pidgin-encryption. Nya erfarenheter har jag fått både genom att hjälpa andra men fram för allt genom att fler i kontaktlistan börjar ha stöd för olika typer av kryptering och man fått en nystart i att leka och testa.

Eftersom att jag ägnar den här posten åt att namndroppa olika tjänster som underlättar att en privat konversation hålls icke-publik nämner jag även några tjänster som jag personligen inte fattat tycke för. Jag har inga nya erfarenheter eller färska minnen av SecureIM då jag inte använder Trillian längre. Hoppade över att testa Flexcrypt då gratisversionen bara tillåter kryptering mot tre adresser. Jag ser inga fördelar med Flexcrypt jämfört med GPG så valet är enkelt.

Ett program som visserligen inte är någon favorit men som åtminstone verkar intressant nog att klara sig från avinstallation är Simp. En uppenbar nackdel med Simp är att det bara är light-versionen som är kostnadsfri. Man bör ifrågasätta tillförlitligheten på att köra crackad propreitär kod, när det finns alternativ. Om du anser den tillförlitlig, go ahead, bara du ställer dig den frågan innan du bestämmer dig. Personligen föredrar jag programvara som finns fritt tillgängligt för signerad nedladdning och vars kod har granskats av oberoende och utomstående. Så till fördelarna med Simp: det är inte en plugin eller addon utan ett program som man skickar sin vanliga chat-trafik genom. Dina kompisar som av någon oförklarlig anledning biter sig fast vid MSN Live och vägrar gå över till Pidgin/Miranda/Trillian kanske föredrar en sådan lösning. Personligen använder jag Pidgin för att slippa ha flera klienter igång så att använda Simp vore ett steg tillbaka för min del.

Att jag inte ägnade fler ord åt de program som faller mig på läppen i den här posten är för att jag planerar att göra en genomgång av dem inom kort. Då kommer jag kort att förklara varför just de programmen rockar och sedan ägna tid åt vilka plugins/addons som gör mitt liv lättare.

Det blev en liten utvikning om vad jag har provat på och mina intryck av olika program. För att återknyta till där jag började - mina funderingar kring det här med privatliv. För egentligen, är det verkligen någon som bryr sig om vad lilla jag skriver? Å ena sidan, vet jag inte så därför borde man ta det säkra före det osäkra. Å andra sidan kräver det mer ansträngning än att inte bry sig. När jag var mitt upp i att installera ytterligare någon krypteringsprogramvara stannade jag upp och reflekterade över vad jag egentligen höll på med. Att kryptera trafiken och sedan inte utbyta några hemlisar, påminner inte det som när man inom datasäkerhet i princip visar på en svaghet hos ett system men inte utnyttjar svagheten? Därav rubriken. Som jag var inne på i föregående post så är det en god idé att testa att man klarar av att installera nödvändig programvara och sätta upp en privat förbindelse innan den dagen kommer då man har en hemlis att utbyta. På samma sätt som en backup måste vara tagen innan systemet börjar krångla.

På tal om något helt annat så sneglade jag på bloggens statistik och upptäckte en glädjande nyhet. Följande länk - http://www.cypherpunks.ca/otr/#downloads - toppar numera listan över mest klickade. Utifrån det och vetskapen om hur många i min kontaktlista som har OTR vågar jag dra slutsatsen att det är betydligt fler än mina närmaste som läser den här bloggen. Den slutsatsen hade man i och för sig kunnat dra redan efter att ha tittat på totalt antal besökare på inlägget. Jag brukar inte ha speciellt bra koll på statistiken och blev hur som helst flerfaldigt glatt överraskad av att titta på siffrorna.

Fler som tittat på privat kommunikation men som inte blivit länkade i ovanstående text: SommarKatten föredrar Miranda och skriver om hur sin laptop är konfigurerad. Väl skrivet och flera bra länkar. Även hos Dumheter hittar man en genomgång av vad man kan göra för att skydda sig. Stillbildsfotografen har en guide specifikt för dem som sitter med hotmail, inklusive hur man via addons kommer åt eposten utan POP/IMAP. Mest för de fina bildernas skull så blir det en länk till atte.

Sportmässigt åkte alla lag ur EM som hade vilat spelare i den tredje omgången. Slump? Sverige hade som bekant inte en susning mot Ryssland, men det hade å andra sidan guldfavoriten Holland inte heller. Hedern i behåll?

Pretty Good Privacy (PGP) is a computer program that provides cryptographic privacy and authentication. PGP is often used for signing, encrypting and decrypting e-mails to increase the security of e-mail communications. It was originally created by Philip Zimmermann in 1991

Pretty Good Privacy (PGP) is a popular program used to encrypt and decrypt e-mail over the Internet. It can also be used to send an encrypted digital signature that lets the receiver verify the sender's identity and know that the message was not changed en route. Available both as freeware and in a low-cost commercial version, PGP is the most widely used privacy-ensuring program by individuals and is also used by many corporations. Developed by Philip R. Zimmermann in 1991, PGP has become a de facto standard for e-mail security. PGP can also be used to encrypt files being stored so that they are unreadable by other users or intruders.

How PGP encryption works

PGP encryption uses public-key cryptography and includes a system which binds the public keys to a user name and/or an e-mail address. The first version of this system was generally known as a web of trust to contrast with the X.509 system which uses a hierarchical approach based on certificate authority and which was added to PGP implementations later. Current versions of PGP encryption include both alternatives through an automated key management server.

PGP uses a variation of the public key system. In this system, each user has a publicly known encryption key and a private key known only to that user. You encrypt a message you send to someone else using their public key. When they receive it, they decrypt it using their private key. Since encrypting an entire message can be time-consuming, PGP uses a faster encryption algorithm to encrypt the message and then uses the public key to encrypt the shorter key that was used to encrypt the entire message. Both the encrypted message and the short key are sent to the receiver who first uses the receiver's private key to decrypt the short key and then uses that key to decrypt the message.

PGP comes in two public key versions - Rivest-Shamir-Adleman (RSA) and Diffie-Hellman. The RSA version, for which PGP must pay a license fee to RSA, uses the IDEA algorithm to generate a short key for the entire message and RSA to encrypt the short key. The Diffie-Hellman version uses the CAST algorithm for the short key to encrypt the message and the Diffie-Hellman algorithm to encrypt the short key.

For sending digital signatures, PGP uses an efficient algorithm that generates a hash (or mathematical summary) from the user's name and other signature information. This hash code is then encrypted with the sender's private key. The receiver uses the sender's public key to decrypt the hash code. If it matches the hash code sent as the digital signature for the message, then the receiver is sure that the message has arrived securely from the stated sender. PGP's RSA version uses the MD5 algorithm to generate the hash code. PGP's Diffie-Hellman version uses the SHA-1 algorithm to generate the hash code.

To use PGP, you download or purchase it and install it on your computer system. Typically, it contains a user interface that works with your customary e-mail program. You may also need to register the public key that your PGP program gives you with a PGP public-key server so that people you exchange messages with will be able to find your public key.

Where Can You Use PGP?

Originally, the U.S. government restricted the exportation of PGP technology. Today, however, PGP encrypted e-mail can be exchanged with users outside the U.S if you have the correct versions of PGP at both ends. Unlike most other encryption products, the international version is just as secure as the domestic version.

There are several versions of PGP in use. Add-ons can be purchased that allow backwards compatibility for newer RSA versions with older versions. However, the Diffie-Hellman and RSA versions of PGP do not work with each other since they use different algorithms.

Digital signatures

PGP supports digital signatures, message authentication and integrity checking. The latter is used to detect whether a message has been altered since it was completed (the message integrity property), and whether it was actually sent by the person/entity claimed to be the sender (a digital signature). In PGP, these are used by default in conjunction with encryption, but can be applied to plaintext as well. The sender uses PGP to create a digital signature for the message with either the RSA or DSA signature algorithms. To do so, PGP computes a hash (also called a message digest) from the plaintext, and then creates the digital signature from that hash using the sender's private keys.

The message recipient uses the sender's public key and the digital signature to recover the original message digest. He compares this message digests with the message digest he computed her/himself from the (recovered) plaintext. If the signature matches the received plaintext's message digest, it must be presumed (to a very high degree of confidence) that the message received has not been corrupted, either deliberately or accidentally. As well, since it was properly signed, it is very likely (to a very high degree of confidence) that the claimed sender actually did send it.

Web of trust

Both when encrypting messages and when verifying signatures, it is critical that the public key one uses to send messages to someone or some entity actually does 'belong' to the intended recipient. Simply downloading a public key from somewhere is not overwhelming assurance of that association; deliberate (or accidental) spoofing is possible. PGP has, from its first versions, always included provisions for distributing a user's public keys in an 'identity certificate' which is so constructed cryptographically that any tampering (or accidental garble) is readily detectable. But merely making a certificate effectively which is impossible to modify without being detected is also insufficient. It can prevent corruption only after the certificate has been created, not before. Users must also ensure by some means that the public key in a certificate actually does belong to the person/entity claiming it. From its first release, PGP products have included an internal certificate 'vetting scheme' to assist with this; a trust model which has been called a web of trust. A given public key (or more specifically, information binding a user name to a key) may be digitally signed by a third party user to attest to the association between someone (actually a user name) and the key. There are several levels of confidence which can be included in such signatures. Although many programs read and write this information, few (if any) include this level of certification when calculating whether to trust a key.

The web of trust mechanism has advantages over a centrally managed Public key infrastructure scheme such as that used by S/MIME, but has not been universally used. Users have been willing to accept certificates and check their validity manually, or to simply accept them. The underlying problem has found no satisfactory solution.

Certificates

In the (more recent) OpenPGP specification, trust signatures can be used to support creation of certificate authorities. A trust signature indicates both that the key belongs to its claimed owner and that the owner of the key is trustworthy to sign other keys at one level below their own. A level 0 signature is comparable to a web of trust signature, since only the validity of the key is certified. A level 1 signature is similar to the trust one has in a certificate authority because a key signed to level 1 is able to issue an unlimited number of level 0 signatures. A level 2 signatures is highly analogous to the trust assumption users must rely on whenever they use the default certificate authority list (like those included in web browsers); it allows the owner of the key to make other keys certificate authorities.

PGP versions have always included a way to cancel ('revoke') identity certificates. A lost or compromised private key will require this if communication security is to be retained by that user. This is, more or less, equivalent to the certificate revocation lists of centralized PKI schemes. Recent PGP versions have also supported certificate expiration dates.

The problem of correctly identifying a public key as belonging to a particular user is not unique to PGP. All public key / private key cryptosystems have the same problem, if in slightly different guise, and no fully satisfactory solution is known. PGP's original scheme, at least, leaves the decision whether or not to use its endorsement/vetting system to the user, while most other PKI schemes do not, requiring instead that every certificate attested to by a central certificate authority be accepted as correct.

Security quality

To the best of publicly available information, there is no known method which will allow a person or group to break PGP encryption by cryptographic or computational means. Early versions of PGP have been found to have theoretical vulnerabilities and so current versions are recommended. Indeed, in 1996, cryptographer Bruce Schneider characterized an early version as being "the closest you're likely to get to military-grade encryption."[1] In contrast to security systems/protocols like SSL which only protect data in transit over a network, PGP encryption can also be used to protect data in long-term data storage such as disk files.

The cryptographic security of PGP encryption depends on the assumption that the algorithms used are unbreakable by direct cryptanalysis with current equipment and techniques. For instance, in the original version, the RSA algorithm was used to encrypt session keys; RSA's security depends upon the one-way function nature of mathematical integer factoring.[citation needed] Likewise, the secret key algorithm used in PGP version 2 was IDEA, which might, at some future time, be found to have a previously unsuspected cryptanalytic flaw. Specific instances of current PGP, or IDEA, insecurities — if they exist — are not publicly known. As current versions of PGP have added additional encryption algorithms, the degree of their cryptographic vulnerability varies with the algorithm used. In practice, each of the algorithms in current use is not publicly known to have cryptanalytic weaknesses.

Any agency wanting to read PGP messages would probably use easier means than standard cryptanalysis, e.g. rubber-hose cryptanalysis or black-bag cryptanalysis i.e. installing some form of trojan horse or keystroke logging software/hardware on the target computer to capture encrypted keyrings and their passwords. The FBI have already used this attack against PGP[2][3] in their investigations. However, it is important to note that any such vulnerability apply not just to PGP, but to all encryption software.

An incident in December 2006 (see United States v. Boucher) involving US customs agents and a seized laptop PC which allegedly contained child pornography indicates that US Government agencies find it "nearly impossible" to access PGP-encrypted files. Additionally, a judge ruling on the same case in November 2007 has stated that forcing the suspect to reveal his PGP pass-phrase would violate his Fifth Amendment rights i.e. a suspect's constitutional right not to incriminate himself.

PGP Corporation encryption applications

While originally used primarily for encrypting the contents of e-mail messages and attachments from a desktop client, PGP products have been diversified since 2002 into a set of encryption applications which can be managed by an optional central policy server. PGP encryption applications include e-mail and attachments, digital signatures, laptop full disk encryption, file and folder security, protection for IM sessions, batch file transfer encryption, and protection for files and folders stored on network servers and, more recently, encrypted and/or signed HTTP request/responses by means of a client side (Enigform) and a server side (mod auth OpenPGP) plug-in.

The PGP Desktop 9.x family includes PGP Desktop Email, PGP Whole Disk Encryption, and PGP Net Share. Additionally, a number of Desktop bundles are also available. Depending on application, the products feature desktop e-mail, digital signatures, IM security, whole disk encryption, file and folder security, self decrypting archives, and secure shredding of deleted files. Capabilities are licensed in different ways depending on features required.

The PGP Universal Server 2.x management console handles centralized deployment, security policy, policy enforcement, key management, and reporting. It is used for automated e-mail encryption in the gateway and manages PGP Desktop 9.x clients. In addition to its local keyserver, PGP Universal Server works with the PGP public key server—called the PGP Global Directory—to find recipient keys. It has the capability of delivering e-mail securely when no recipient key is found via a secure HTTPS browser session.

With PGP Desktop 9.x managed by PGP Universal Server 2.x, first released in 2005, all PGP encryption applications are based on a new proxy-based architecture. These newer versions of PGP software eliminate the use of e-mail plug-ins and insulate the user from changes to other desktop applications. All desktop and server operations are now based on security policies and operate in an automated fashion. The PGP Universal server automates the creation, management, and expiration of keys, sharing these keys among all PGP encryption applications.

The current shipping versions are PGP Desktop 9.8.3 and PGP Universal 2.8.3.

Also available are PGP Command Line, which enables command line-based encryption and signing of information for storage, transfer, and backup, as well as the PGP Support Package for Blackberry which enables RIM Blackberry devices to enjoy sender-to-recipient messaging encryption.

New versions of PGP applications use both OpenPGP and the S/MIME, allowing communications with any user of a NIST specified standard.

Då Daniel var lättövertalad att installera OTR och jag inte vill missa ett tillfälle att tipsa vem som än råkar läsa det här - information om off-the-record och installeringsinstruktion.

Åter till pgp/gpg. Tecknen i rubriken - 6616326F - är min publika nyckel och den kan hämtas från pool.sks-keyservers.net alternativt, för er som föredrar att lägga till nyckel via urklipp så är det bara kopiera nedanstående.

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.3 (MingW32)
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=yvBA
-----END PGP PUBLIC KEY BLOCK-----

Uppdatering. På grund av bristfällig planering i samband med ominstallation så gick min gamla nyckel om intet. Posten är uppdaterad med aktuell nyckel.

Philip R. Zimmermann is the creator of Pretty Good Privacy, an email encryption software package. Originally designed as a human rights tool, PGP was published for free on the Internet in 1991. This made Zimmermann the target of a three-year criminal investigation, because the government held that US export restrictions for cryptographic software were violated when PGP spread worldwide. Despite the lack of funding, the lack of any paid staff, the lack of a company to stand behind it, and despite government persecution, PGP nonetheless became the most widely used email encryption software in the world. After the government dropped its case in early 1996, Zimmermann founded PGP Inc.

Zimmermann has received numerous technical and humanitarian awards for his pioneering work in cryptography. In 2008 PC World named him one of the Top 50 Tech Visionaries of the last 50 years. In 2003 he was included on the Heinz Nixdorf MuseumsForum Wall of Fame, and in 2001 he was inducted into the CRN Industry Hall of Fame. In 2000 InfoWorld named him one of the Top 10 Innovators in E-business. In 1999 he received the Louis Brandeis Award from Privacy International, in 1998 a Lifetime Achievement Award from Secure Computing Magazine, and in 1996 the Norbert Wiener Award from Computer Professionals for Social Responsibility for promoting the responsible use of technology. He also received the 1995 Chrysler Award for Innovation in Design, the 1995 Pioneer Award from the Electronic Frontier Foundation, the 1996 PC Week IT Excellence Award, and the 1996 Network Computing Well-Connected Award for "Best Security Product." In 1995 Newsweek named Zimmermann one of the "Net 50", the 50 most influential people on the Internet. In 2006 eWeek ranked PGP 9th in the 25 Most Influential and Innovative Products introduced since the invention of the PC in 1981...

PGP overview

PGP is a computer program that enables you to scramble email messages so that they can only be read by the people you want to read them.

Sending normal emails is like using postcards instead of letters - anyone can read them en-route. When you send an email to someone else, the contents may pass through a dozen other computers. Anyone in control of these could easily see what you have written. Also, if your computer falls into the hands of the authorities, they would be able to look back over all your past emails. Even if you think you've deleted them they can still be lurking on your disc, and computer forensics experts will be able to retrieve them.

This guide will take you through the basic steps necessary to install and use PGP on a computer running Windows 95, 98, ME, NT, 2000, or XP. This won't work on a computer running an older version of Windows, like Windows 3.1. There is a version of PGP for Apple Macs, but the installation procedure will be slightly different and this document doesn't describe it.

First, you need a copy of the program. If you have a PGP setup CD already you can use this.

If you don't have a PGP setup CD, you can always download PGP from the website at http://www.pgpi.org/. The CD has a copy of PGP version 6.5.8. Even though this is quite an old version, it is the most trusted as it has been carefully scrutinised by experts for several years. The later versions may have hidden weaknesses that are yet to be revealed.

There are two basic security issues concerning PGP and emails:

• Firstly, whether someone intercepting your scrambled emails as they travel through the internet can read them.
• Secondly, whether someone with physical access to your computer can read your scrambled messages.

PGP is almost certainly unbreakable as regards the first case, so you should start using it to scramble your everyday emails straight away. Remember the more emails sent using PGP, the better, because then the people using them don't stand out so much. So even if you're just forwarding someone a joke you've received, use PGP to scramble the message. If the authorities raid your house and get your computer, there is some small opportunity for them to see some of the scrambled messages you have sent if you don't take appropriate precautions. So don't start using PGP for really important emails until you're happy you understand the risks.

But the most important thing is to start using PGP and encouraging other people to use it.

For how use it please follow this link

[http://www.philzimmermann.com]

[http://www.shac.net/pgp/index.html]

Other than my normal pain, I am ...intrigued... to report that I woke up yesterday, stood up and realised something had gone horribly wrong. Throughout the course of the day I got worse and ended up just a heap.

What's wrong? My muscles appear to have stopped working.

The tops of my feet, my shins, the back of my thighs, my wrists and forearms, my upper arms, my neck and head all ache. I can't lift my arms above my head. I can barely get to the loo as my feet and shins hurt so much when I put weight on them.

Not really sure what's going on. When I woke up on Friday with throat feeling a bit iffy and legs aching a bit I thought it was because I'd been out two days in a row. But now that it's Sunday and I'm no better, I fear something else may be wrong.

To the doctors I shall attempt to hobble tomorrow. I don't really know yet how I'm going to get down the stairs as my hands don't work well enough to grip a banister and my legs aren't loving my weight... but still, maybe there will be some sort of miracle. It's freakishly difficult to get a GP to come out of the cheerful confines of the surgery, so I doubt I'll manage that.

Wish me luck.

My recovery from the Symphysis Pubis injections was not quick. What a hell of a lot of pain with, so far, no good effects (like... say... pain relief!). Still, at least I tried, eh? I spent nearly two weeks in the kind of agony I had hoped was confined only to childbirth and crazy things like falling down stairs whilst having SPD. That fortnight proved to me how very wrong I was.

Mum's visit was wonderful, though I was knackered and in mucho grande pain and we were all suffering from colds: things went speedily downhill from then on. Henry developed horrific nappy rash in the space of a weekend - on Monday I had to queue at the GP surgery and eventually got some Timodine which took until Wednesday to show any kind of effect but then worked wonders! Henry normally has the kind of nappy rash that clears up after one liberal smearing of Sudocrem so this whole experience was quite a shock.

Amidst this whir of lip-biting pain for both myself and my poor baby son, I found a Facebook group for SPD Sufferers to join. It seems to have some useful links to press coverage of SPD, worth keeping an eye on just for that!

Other than checking Facebook to see what's going on in the world that I'm imprisoned from, I've not been online a lot as I keep failing to get my poor eyes re-tested. It has been a few years since my last eye examination and my eyes ache every moment even though I'm so tired nowadays I am always wearing my glasses so really I should make it a priority to get things sorted out. One can only carry on so long with Firefox giving a rather enormous text size!

Right: the pertinent news. My most recent letter from the DLA folks was on Saturday, I believe, asking me to confirm the Jobcentre I received the initial DLA form from and the date that I requested that form. I sent the form back with the relevant information on Monday and have heard nothing since. I am hoping that they were collecting this information to backdate my payments from but I daren't get those hopes raised too high as I'm already in a fragile enough state of mind. I don't really see that I can cope with many more disappointments.

My current state of agony is pretty self-inflicted. I quite simply have done too much this week. Going out more than once takes its toll mightily. But on the plus side, Michael is a happy man and Henry has had lots of fresh air and sunshine with people who love him. I think that a quiet weekend is called for. Michael's Father's Day gift is sorted and should be arriving any time in the next couple of days. Me and Henry both spent a lot of time choosing it so we hope that it is appreciated!

I hope those reading this are in a better place, pain-wise, than me!

Mein neuer Public Key :

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.7 (MingW32)
mQGiBEhPYPQRBACPMyXIgK4UmQlz+J+XGW3zHU2vSYSnoFOXQ39WLWveoOp5akwD
G22kh7V2OZIFzKbQUTUpVQkGON7qBM41ReZUpeq59MhFBlI/e8tlvOQsCUFVWrMb
EqKXrQSDFv4VIcgzMlgXZVUeGpj59CPixs56QLrqWHOhKkFwYBs7Ohw6zwCgs+CI
UP8+igopwZD8XKSojVEVr98D/Airhrt3aAUwigh4ZU38AqiaBwRw08NDBmiV+60i
q9AjBaOA1FJHlr1mHj3EV+mCjtHbirA+wN9faJC1rVSJXvVMxVhYnYmBKGHIJpFk
GpEWOgSa8V5bLzBc1T/CzGRoMfABAv3u2fZsLN01WBq+e6MrYQCSuMzYuquxSaGb
PZniA/4s6jDpMRBuVwKn15O31EHZbg13LkXj64M6a/nVxpQshiAThcadtqjUVnVp
JyyBFmYEDWCj0hjjLwnjpE1EaUzpyBzSX7M2QAbMxEeZGaNJ5CMNeIjYrB8IZ65E
KQR0AOvJul1JqyRd5FK2AtSNc0a2M2NfWiAGZitQ6WvBxZZu7LQwSGFyeSBSeWJh
ayA8aGFyeUBicm90aGVyLXdvbHZlcy1odXNreS1rZW5uZWwuZXU+iGAEExECACAF
AkhPYPQCGwMGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAAKCRDbSgH9LeKrsnrIAKCd
1reKCUgqp6IhkARgPVhS/RVdWwCgsSBeSwsXIs33jh/ShIftbsD+6me5Ag0ESE9g
9BAIAJWM6L3+jItOAWPsjyPU9F/ui5osJHLTRkFSIdk92qnRQypCCUsitjMsUpkJ
S8UQ8CKFfkES12N/zaWu3vcA0Kt61C38O/Bk+w58/UjiF33gl8bqCjw9scNPnCcG
cSkUVwpyAIR8NFkXXBwvKp/9xALJrMN2PopIyNA0sEILfKzmGJznWVm6C6fVVoso
2dbT/7TQOuCMtFhrVKW4TdBubV02qfu2QacOdqch91agI99difxQBESbRYYB1860
+qaJyslBilJILn7XNeycXprr901iHQX1Ce64tALnmPhBr/zhHNWUHWk4hLrCR6Fv
VdWP0Z+omAIGQy3GuGtdj4JJp5MAAwYH/i/JCg+0G8SWSLuDP46UfQHcJbg2yGqq
MYvVJ3A9Xe5I8Z9wIhORSc0HCaU4GzsKRQFmtexqbCl0zLzLY3whz177BgmXPD+Q
OiN77dfLtKUnJa1euu8YKbjWjfvxPfDHq/4E+rMHdUqxdMa8BjOX2hT8NLOL0n35
v0A0uQELlvVMSnOc5DL2Et8cYp4Yi5BF1X81nU6UZVGagEyeOlcHTX5532mvhGVR
vfL+mVkyoKPROfw7zSvkAGzedTDAezE7xhIqti6tU+KPU9bDSNWIsWFdrJsrt+EY
IbjjTX6DFUP1xjYCQeA27CCHdBPKDOVAF7AAM3bOVUZ6kK87N+WUiZ2ISQQYEQIA
CQUCSE9g9AIbDAAKCRDbSgH9LeKrsmMpAJ9QfCQ02WPfoitlzMgvrS3hOCVzSACf
R/60Q9YBapYhNN9ow0gotTDuSmk=
=O52/
-----END PGP PUBLIC KEY BLOCK-----

Für alle denen das zu kompliziert ist habe ich mir eine Privacy Box eingerichtet:
Otaku `s Privacy Box

Ergänzend für alle die einen sicheren, anonymen Browser brauchen oder sicherheitshalber benutzen möchten, sei das Paket Tor Browser des Tor Projekts empfohlen : Läuft einfach und ohne viel Konfigurationsaufwand, wenn es sein muss auch von jedem USB Stick. Die verschiedenen Versionen sind hier zu finden.

Have fun


-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.6 (GNU/Linux)
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=Edbk
-----END PGP PUBLIC KEY BLOCK-----


#!/bin/sh -e

export LANG=C

for I in `seq 1 10000`
do
        NUMBER=`printf "%5.5d\n" $I`
        USERNAME="Testuser #$NUMBER"
        COMMENT="auto-generated key"
        EMAIL="testuser-$NUMBER@pgp-loadtest.example.com"
        (
        cat <<EOF
        %echo Generating Key for $EMAIL
        Key-Type: DSA
        Key-Length: 1024
        Subkey-Type: ELG-E
        Subkey-Length: 1024
        Name-Real: $USERNAME
        Name-Comment: $COMMENT
        Name-Email: $EMAIL
        Expire-Date: 2009-01-01
        Passphrase: foo
        %commit
EOF
        ) | gpg --gen-key --batch --no-default-keyring \
            --secret-keyring /var/tmp/gpg-test.sec \
            --keyring /var/tmp/gpg-test.pub
done

Die schlechte Nachricht: Spätestens nach dem dritten Key wird GnuPG eine Pause einlegen, weil der Entropie-Pool ausgelutscht ist. Ich habe meine Lösung für dieses Problem gefunden, indem ich (und das ist wirklich sehr, sehr böse, bitte auf keinen Fall zuhause nachmachen) /dev/urandom zu /dev/random umgelötet habe. Kreative alternative Lösungsvorschläge für das schmutzige kleine Entropie-Problem werden auf jeden Fall gern entgegengenommen.