Privacy Icon

Privacy

7 Stories
All Topics

Medium Icon Medium

An Efail postmortem

Efail caused a panic at the disco: ... some researchers in Europe published a paper with the bombshell title “Efail: Breaking S/MIME and OpenPGP Email Encryption using Exfiltration Channels.” There were a lot of researchers on that team but in the hours after release Sebastian Schinzel took the point on Twitter for the group. Oh, my, did the email crypto world blow up. The following are some thoughts that have benefited from a few days for things to settle. Lots of interesting insights here, perhaps most controversially how the EFF's handling of the situation may have done more harm than good in the author's opinion. Also: we could stand to have a renewed appreciation for OpenPGP’s importance to not just email crypto, but the global economy. I can say I definitely have more appreciation for it after reading this than I did before. I hadn't thought about its influence (which is huge) outside of encrypted email.

read more...

Zack Whittaker zdnet.com

I asked Apple for all my data. Here's what was sent back.

Zack Whittaker writes for Zero Day: Apple gave me all the data it collected on me since I bought my first iPhone — in 2010. This is what has largely stood out to me in the ongoing discussion about what data the four have on me and how they use it... As insightful as it was, Apple's treasure trove of my personal data is a drop in the ocean to what social networks or search giants have on me, because Apple is primarily a hardware maker and not ad-driven, like Facebook and Google, which use your data to pitch you ads. Want to request your data? It takes just a few seconds...

read more...

Cloudflare Blog Icon Cloudflare Blog

Cloudflare announces 1.1.1.1 - the fastest, privacy-first consumer DNS service

For those wanting to 86 8.8.8.8, here’s the 411 on 1.1.1.1. They’re making some pretty big claims here. One is that it’s fast (which DNSPerf corroborates). The other big claim is that it’s “privacy-first”. This one is a bit harder to corroborate but their promise is pretty convincing: We will never log your IP address (the way other companies identify you). And we’re not just saying that. We’ve retained KPMG to audit our systems annually to ensure that we're doing what we say. If you care about speed and privacy (you should) there is a good chance you should consider switching to this.

read more...
0:00 / 0:00