[liberationtech] Pond - Or, how to better organise a discreet relationship with the Director of the CIA

[ilf]

https://github.com/agl/pond - Adam Langley

For secure, synchronous communication we have OTR and, when run over 
Tor, this is pretty good. But while we have secure asynchronous 
messaging in the form of PGP email, it's not forward secure and it 
gratuitously leaks traffic information. While a desire for forward 
secure PGP is hardly new, it still hasn't materialised in a widely 
usable manner.

Additionally, email is used predominately for insecure communications 
(mailing lists, etc) and is useful because it allows previously 
unconnected people to communicate as long as a (public) email address is 
known to one party. But the flip side to this is that volume and spam is 
driving people to use centralised email services. These provide such 
huge benefits to the majority of email communication, it's unlikely that 
this trend is going to reverse. But, even with PGP, these services are 
trusted with hugely valuable traffic information if any party uses them.

So Pond is not email. Pond is forward secure, asynchronous messaging for 
the discerning gentleman. Pond messages are asynchronous, but are not a 
record; they expire automatically a week after they are received. Pond 
seeks to prevent leaking traffic information against everyone except a 
global passive attacker.

-- 
ilf

Über 80 Millionen Deutsche benutzen keine Konsole. Klick dich nicht weg!
		-- Eine Initiative des Bundesamtes für Tastaturbenutzung