Collaborate Disseminate
What are the following headers in an end-to-end ProtonMail email?
X-Pm-Content-Encryption
X-Pm-Origin
X-Pm-Scheduled-Sent-Original-Time
X-Pm-Recipient-Authentication
X-Pm-Recipient-Encryption
It also mentions pgp-pm.
Are they specific to … Continue reading What are ProtonMail’s headers? [closed]
I’m working on making an end-to-end encrypted app that will store sensitive mental health information. The goal is to make it completely impossible for someone with access to the server to see the users raw data. The server acts only as a … Continue reading Is it safe to derive the salt from the users email/phone number when pre-hashing a password to be sent to a server?
I was thinking about building a simple end-to-end encrypted chat with group chat capabilities. Please keep in mind that 1) it’s just an experiment to help me learn more about cryptography and 2) I’m not a security expert that knows all the… Continue reading Group admin in end-to-end encrypted group chat
I use Conversations, and my interlocutor is Monal (or another application for iOS (you can tell which is better)).
I plan to use OMEMO for encryption. Are files and photos encrypted or not?
Are calls encrypted only using TLS and how secur… Continue reading Encryption of calls and files in XMPP
I’am working on a chat app and wondering how to implement end-to-end encryption.
This is a side project and I am no crypto warrior. The idea is to build something quite simple to progress.
I know there are already some answers out there bu… Continue reading End-to-end encryption for a chat app
I’m building a webapp where I want to encrypt user data. I’ve done A LOT of research about this.
The main issue is that I want only users to be able to access their data. After reading countless articles and forums, I’ve come to the conclu… Continue reading Where to store user private keys in a webapp? [duplicate]
We are having the need to end-to-end encrypt highly confidential files on Google Drive for HR & Finance Departments, and these users need those files to be automatically synchronized to cloud (.i.e Google Drive).
Which approaches or so… Continue reading Which solution is suitable for Google Drive files end-to-end encryption? [closed]
I’ve been reading lately about the Double Ratchet protocol, how it works conceptually. I understand generally the idea behind the protocol, that it provides Forward Secrecy and Post-Compromise security (the healing period depending on how … Continue reading Benefits of the Double Ratchet protocol over the constant Ephemeral DH key exchange
TL;DR Is it possible to create an end-to-end encrypted web application where newly created users are able to access data encrypted before their creation?
My plan is to develop a (let’s call it a Customer-Managing-App). This app should als… Continue reading How to implement secure E2EE for a managing App
I send very confidential items by email, such as photos, addresses, social security numbers, bank numbers, driving card numbers, and diplomas.
Everything was supposed to stay in France.
In fact, it’s an Amazon server in the USA, so no conf… Continue reading Confidentiality of data coming from a country with data protection laws stored in a country with different laws [closed]