Collaborate Disseminate
We are currently implementing envelope encryption to securely encrypt sensitive data(name, emails, phone numbers, photo, previous employers etc.) about our users. However, we are now thinking about to implement browser-side caching to redu… Continue reading Browser- side caching of encrypted sensitive informations in sessionStorage?
Today it was time again to generate some new PGP key pairs that will be used for end-to-end-encrypted email. Now I’d like to know how exactly OpenPGP protects the private keys.
What I have understood so far is that the actual private PGP k… Continue reading How exactly does OpenGPG protect private keys?
As Whatsapp uses Diffie-Hellman algorithm for a key exchange and SSL certification ensures the authenticity of its server for the end user like me.
As per my understanding, messages first has to go to whataspp server and then it sends to o… Continue reading Can the WhatsApp servers really not read our messages?
What are the following headers in an end-to-end ProtonMail email?
X-Pm-Content-Encryption
X-Pm-Origin
X-Pm-Scheduled-Sent-Original-Time
X-Pm-Recipient-Authentication
X-Pm-Recipient-Encryption
It also mentions pgp-pm.
Are they specific to … Continue reading What are ProtonMail’s headers? [closed]
I’m working on making an end-to-end encrypted app that will store sensitive mental health information. The goal is to make it completely impossible for someone with access to the server to see the users raw data. The server acts only as a … Continue reading Is it safe to derive the salt from the users email/phone number when pre-hashing a password to be sent to a server?
I was thinking about building a simple end-to-end encrypted chat with group chat capabilities. Please keep in mind that 1) it’s just an experiment to help me learn more about cryptography and 2) I’m not a security expert that knows all the… Continue reading Group admin in end-to-end encrypted group chat
I use Conversations, and my interlocutor is Monal (or another application for iOS (you can tell which is better)).
I plan to use OMEMO for encryption. Are files and photos encrypted or not?
Are calls encrypted only using TLS and how secur… Continue reading Encryption of calls and files in XMPP
I’am working on a chat app and wondering how to implement end-to-end encryption.
This is a side project and I am no crypto warrior. The idea is to build something quite simple to progress.
I know there are already some answers out there bu… Continue reading End-to-end encryption for a chat app
I’m building a webapp where I want to encrypt user data. I’ve done A LOT of research about this.
The main issue is that I want only users to be able to access their data. After reading countless articles and forums, I’ve come to the conclu… Continue reading Where to store user private keys in a webapp? [duplicate]
We are having the need to end-to-end encrypt highly confidential files on Google Drive for HR & Finance Departments, and these users need those files to be automatically synchronized to cloud (.i.e Google Drive).
Which approaches or so… Continue reading Which solution is suitable for Google Drive files end-to-end encryption? [closed]