[liberationtech] Need some advice re: online secure communications platform for a survivors group
Steve Weis
steveweis at gmail.com
Mon Jul 11 08:26:55 PDT 2016
Hello Miles. I think your suggestions are not practical for an ad hoc group
of sexual assault survivors. You're talking about them using PGP,
downloading open source clients, or using untested blockchain systems. I
think for a random group of people, all of these will fail in practice due
to poor usability and platform incompatibility. I think there is little
benefit to using a P2P system in this case.
Their threat model is against their abusers and potentially media,
bloggers, or trolls who pick up on the story. It's not against hosted
services like Google or the NSA.
You want something dead simple that works on every platform and managed by
an organization with their own security team. I suggested Google Apps
because it's battle-tested, easy, and in this use case, free. Yes, Google
would see this survivors' group data. They also see a enterprise data --
even from competitors -- that is much more valuable and targeted.
On Mon, Jul 11, 2016 at 5:09 AM Miles Fidelman <mfidelman at meetinghouse.net>
wrote:
> Personally, I'd recommend staying away from any kind of hosting service
> - stick with a peer-to-peer system designed for privacy.
>
> One, really simple notion would be to simply use encrypted email,
> perhaps over a list server. It's a pain, but straightforward. It does,
> however expose group membership, in the form of email addresses.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20160711/1786d025/attachment.html>
More information about the liberationtech
mailing list