[liberationtech] TrueCrypt Alternatives?

[Steve Weis]

Hi Greg. The burden of proof is on Espionage to convince people that
it is safe. I can't trust it based on marketing claims alone.

There is not a sufficiently detailed design document on the website,
much less a battle-tested, peer-reviewed design. I don't see any
reference to independent third-party audits. I can't find any
indication the development team has security or crypto expertise and I
cannot personally sign an NDA to view the source code.

If I'm missing something or you're willing to give source access
without an NDA, please let me know.

Otherwise, I have to advise people to avoid Espionage.

On Thu, Oct 2, 2014 at 5:50 PM, Greg <greg at kinostudios.com> wrote:
>
> Stating a thing does not make it true, not matter how many times it is repeated.
> It is not "apply". It is apply.
> Anyone is welcome, so long as they:
>
> 1. Are software security professionals. (Nobody else matters in this context, after all.)
> 2. Don't work for government intelligence agencies.
> 3. Sign the NDA we give them, the salient points of which are enumerated on our site.
>
> They will be given a free license to Espionage.
>
> Also, you convince me how to keep providing high quality software and support while simultaneously making Espionage completely free and open source and I will do it in a flash.