Do you know you can use Google Fonts without Google tracking your visitors and stealing the metrics?

git.occrp.org/libre/fonts-dego

Frontex, the EU border agency, have cancelled plans to give up to €400,000 to a surveillance company to spy on the social media of migrants and “civil society and diaspora communities in destinations (EU)”.

privacyinternational.org/long-

Breaking Trusted Execution Environment (TEE) for mobile devices backed by ARM hardware-based access control

research.checkpoint.com/the-ro

Following are cipher suites that is being used for encryption in all pEp projects:

1 Curve25519
2 NIST P-256
3 NIST P384
4 NIST P521
5 RSA 2K
6 RSA 3K
7 RSA 4K
8 RSA 8K

Depending on the project, users will be able to choose themselves the cipher suite they want to use.

sequoia-pgp.org/status/#algori

Is RSA 2k enough to use as default cipher suite? If not, can you write some reasoning?

pEp for iOS will be released in November, I like how it syncing the private keys between multiple devices already

A Manifesto for the Self-Empowerment of Internet Users

webisours.github.io/

We, the signatories of this manifesto, are firmly convinced that the Internet can and must be owned by the users. This requires trustworthy communication technology, which:

Guarantees the privacy and rights of users by technical means.
Is developed under an approved free and open source license.
Is solely run de-centrally and collectively by the users.
...

Testing p≡p OpenPGP private key synchronisation protocol between multiple iOS, Windows and Android devices and it works great :)
Linux and OSX testing in the queue.

I can read and write encrypted emails on all devices finally with the same private/public key and 1 click setup.

Google doesn't want to give access to Gmail for pEp apps, because they are not email clients but security and privacy apps. Security and privacy apps are not allowed to access Gmail under Google user data policy.

pEp apps will drop support for key servers in the upcoming releases.

Only peer2peer key exchange will be supported.

Reading few recent articles about so called experts recommending What'sApp or Signal instead of GPG.

How is centralized service, without possibility to federate supposed to be better?

Or better how could ever be completely closed source service managed by Facebook with new privacy violations every week be better?

Someone should teach the journalists the differences..

It seems that pEp email clients will loose access to Gmail accounts bcs Google is too slow to verify the apps.

I'd suggest to switch from Gmail to selfhosted email.

Testing Sequoia encryption/decryption speed. Results are significantly better than GnuPG. Time to switch your projects from GnuPG to Sequoia.

web.pep.security/Sequoia.bench

sequoia-pgp.org

Show more
OpenCloud Luxembourg Mastodon instance

A Mastodon instance for Luxembourg and beyond.