[liberationtech] Snakeoil and suspicious encryption services
Fabio Pietrosanti (naif)
lists at infosecurity.ch
Mon Jul 21 12:49:51 PDT 2014
Il 7/18/14, 4:59 PM, Lorenzo Franceschi-Bicchierai ha scritto:
>
> Hey guys,
>
> After The New York Times video suggesting a few questionable services to
> encrypt email (see here:
> http://www.nytimes.com/video/technology/personaltech/100000003002385/easily-encrypt-your-email.html?smid=tw-nytimes)
> I was wondering if it's time to make a list of not-so-good snakeoil
> encryption services that have popped up after the Snowden revelations.
I also suggested few years ago to make a snake oil encryption directory:
http://infosecurity.ch/20100719/snake-oil-security-claims-on-crypto-security-product/
It's complicated because it's something that impact "Reputation" of
product vendors, so it does require:
- an objective methodology to be impartial enough
- a forensic proof collection of snake-oil evidence (because the indexed
product can change their website/claim/brochure)
- a legal team to resist against pressure by product manufacturer
- a structured database to clearly collect/show/collect the snake-oil sign.
Yet i love the idea as it embedd a certain degree of trolling ;-)
--
Fabio Pietrosanti (naif)
HERMES - Center for Transparency and Digital Human Rights
http://logioshermes.org - http://globaleaks.org - http://tor2web.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20140721/99286e6a/attachment.html>
More information about the liberationtech
mailing list