To encrypt or not? That is the question

Even before someone hacked Sarah Palin's Yahoo Mail account I had been wondering whatever happened to encryption.

Encryption -- the science of rendering plain text unreadable by anyone but the intended reader -- made a splash in the mid-1990s. At the time the U.S. government was investigating human rights activist Phil Zimmermann for allegedly violating the Arms Export Control Act by distributing his PGP (Pretty Good Privacy) e-mail encryption software. The government eventually relaxed the restrictions and PGP was no longer programa non grata.

Nearly a decade has passed and it struck me recently that encryption still hasn't become a household word, although anyone who uses a Web browser has had his or her communications with sensitive Web sites encrypted without them even necessarily knowing it.

But outside of the SSL activity being done behind the scenes, people haven't been downloading encryption software to keep their online communications private. Hardly anyone I know uses encryption, even at work. Given the government's targeting of journalist sources and my own personal brush with an attempted hack, I decided to look into whether encryption would be a good idea and why it isn't more widely adopted.

First, a test drive
My first question was, is it still complex and difficult to use? My sense after trying out a free trial version of PGP Desktop Email ($149 after the one-month trial) is that it may be easier to use than it once was, but that it's still more complicated than necessary.

I downloaded the software and followed the prompts as it generated a public key for people to use to encrypt messages sent to me, and a private key for me to use to decrypt messages. I picked a password and published my public key to the Global Directory Server for people to find it when sending me encrypted e-mail. I sent an e-mail to Zimmermann as a test and he said it arrived encrypted, so I knew my PGP was working.

This screenshot shows the PGP Desktop Corporate Key Properties window with details of my key.

But then I noticed that reading and sending e-mails was slower than it used to be. It was taking a few seconds to try to authenticate every e-mail signed with a key and to search for keys to encrypt e-mails I was sending. Even after I changed the PGP settings so that it wouldn't automatically look up keys for each recipient, it was still taking time trying to authenticate signed e-mails.

While the software is more user-friendly now (requiring fewer hoops to jump through than the free, open source versions of PGP), there was a slight performance trade off and you still need to set policies and manage keys, which can be a hassle. For instance, because I turned off the automatic key look-up feature for encrypting I now have to manually get keys from people I want to send private e-mails to or look them up in a directory and spread my key to others. Keys for others are not always easy to find either. For me, it's not worth the effort at this time.

But the larger concern is self-perpetuating; because there are so few people I can send encrypted e-mail to I'm less likely to use it, which means that there are likely fewer people overall using encryption. All the software upgrades, automation and enhancements in the world can't change the fact that using encryption for e-mail requires that both parties have the same software installed for it to work.

"The biggest problem in the space has always been the lack of ability to send an encrypted message to someone who wasn't using encryption," says Nick Selby, director of the enterprise security practice at The 451 Group, who uses Gnu PGP.

Corporate workers have it easier than consumers; IT departments can handle the complexities of encryption software and manage the keys. E-mail encryption services from providers like Postini (now owned by Google), CertifiedMail and Voltage Security allow companies to outsource the function, easing the process further.

Despite that, a recent survey of more than 200 organizations conducted by CertifiedMail and Osterman Research found that frequent e-mail encryption users represent 18 percent of the total e-mail users and more than 50 percent of the total are infrequent users. Meanwhile, 21 percent of organizations have an enterprise-wide encryption strategy, according to a survey of 975 executives and administrators by The Ponemon Institute for PGP Corp.

For consumers, a no-hassle option is Hushmail, a free Web-based service that encrypts e-mail, scans for viruses and filters spam. The service encrypts mail sent to other Hush users or PGP-compatible e-mail users.

There is some level of encryption for users of the more popular Web-based e-mail services, but it's limited. Gmail encrypts the login and if a user enables always-https, the e-mail and cookies are encrypted as they travel between the server and the browser. Asked if the content on the servers is encrypted, a Google representative said that encryption and access control technologies are used but the company does not want to provide specifics on how it's used.

Yahoo encrypts the login and sends the password encrypted over the network using SSL. Microsoft provides support for S/MIME encryption for Windows Live Hotmail users when using Microsoft Outlook or Windows Live Mail as clients. Windows Live Messenger includes an option to encrypt contact list data. Representatives from Google, Yahoo and Microsoft declined to discuss why they don't give people the option of storing e-mail in encrypted form on their servers.

If you are going to be concerned about keeping e-mail private, why not instant messages too?

I tried Off-The-Record messaging with Pidgin that allows for messaging on multiple IM platforms simultaneously. It was easy to install and use, but here again it only works if both parties are using the software. The popular multi-platform IM software Trillian has a built-in encryption feature called SecureIM. (For information on how specific popular IM programs handle security see the CNET News IM survey from June.)

Maybe it's just too hard to use
The consumer programs still require some user supervision of keys, which is an impediment to their widespread adoption. Consumers don't want to have to think about the logistics of communicating, they just want it to happen seamlessly.

Basically, e-mail encryption has failed to become mainstream (only five percent of all e-mail is encrypted, according to PGP) because technologists under-estimated how difficult it would be for people to manage their own key rings, said Benjamin Jun, vice president of technology at Cryptography Research.

"If we thought about where encryption was 10 years ago and where it is now, in many ways we have failed," Jun said. "You use more cryptography to start your car in the morning than there is in your e-mail, in many cases."

Meanwhile, the very government forces that were fighting use and export of strong encryption a decade ago may now be among the strongest beneficiaries of it.

Phil Zimmermann created the PGP e-mail encryption program in the early 1990s to be used as a tool by human rights groups. The software is available in free, open source versions and commercial versions sold by PGP Corp. Zimmermann serves as a consultant and advisor to the company and has started a new venture for encrypting voice over IP, called the Zfone Project.

(Credit: Phil Zimmermann & Associates)

"I don't think the government is doing much to discourage general Web encryption now," said PGP creator Zimmermann. "U.S. computer networks are getting hit hard by organized crime and foreign governments like China, so from a national security perspective there are arguments to be made" that favor of encryption. (The FBI, however, continues to seek access to consumer information for law enforcement.)

As data leaks and stolen laptops and missing back up tapes become commonplace, state governments are beginning to realize they may have to force companies to protect sensitive consumer data. A new Massachusetts law will require that personal consumer data stored on laptops and flash drives--and where feasible data transmitted over the Internet and wireless connections--be encrypted. Nevada recently passed a law that requires that personal data be encrypted before transmission over electronic networks.

"Overall, the legislative environment actually tends to favor encryption more now than in the '90s," with regulations like HIPAA and breach disclosure laws that have exemptions if the data is encrypted, Zimmermann said.

Full disk encryption
A hot area for encryption right now is full disk encryption, in which every piece of data on a hard drive is encrypted. With all the laptops that get lost and stolen, there's really no reason not to encrypt the hard drive.

Zimmermann learned this the hard way, having had several laptops stolen from him in train stations in Europe, including one instance that involved a thief distracting him by tossing yogurt on the back of his shirt. "Everyone who travels with a laptop absolutely needs whole disk encryption," he said in recounting the incident. (Zimmermann's latest venture is the Zfone Project, software for encrypting voice over IP calls.)

Bruce Schneier, chief security technology officer at BT, said he uses PGP Whole Disk Encryption and doesn't really worry about encrypting his communications. "It's data at rest that is at risk, not data in transit," he said.

And renowned social engineer Kevin Mitnick, who spent five years in jail for breaking into computer networks, takes extraordinary precautions using encryption when he travels outside of the U.S. because customs officials can search and seize computer equipment with no cause whatsoever. He was detained for four hours recently at a U.S. airport and had his laptops inspected. Because of that risk, he encrypts his hard drive before returning to the U.S. and encrypts all his confidential data, transmits it to servers in the U.S. and wipes the data from his laptop.

Mitnick says he uses free open source disk encryption software called TrueCrypt. Microsoft's Windows Vista and Windows Server 2008 include BitLocker Drive Encryption. And Fujitsu and other hardware companies offer full disk encryption hard drives.

While rules may force companies to adopt encryption to protect consumer data, there is no outside force pushing individuals to use it. Until people feel more vulnerable they aren't likely to be compelled to install more software, according to Cryptography Research's Jun. "Most alarm systems are installed after a home has been burglarized, not before," he said.

But just because people don't realize they need it doesn't mean it shouldn't be more readily available to them, said Marc Rotenberg, executive director of the Electronic Privacy Information Center.

"Right now, it's not practical. I think that's unfortunate and it should be more widely available," he said. "My hope is that in an IPv6 (Internet Protocol version 6) world encryption will be routine."

[Imalittleteapot]

And you've discovered the biggest problem with encryption, nobody uses it. Besides for Palin's case it wouldn't have worked anyway because she used yahoo. Even if it had been encrypted it would have just been decrypted for the hacker ever so conveniently when they guessed the password right. What's the real lesson? Even encryption doesn't work too well if someone knows your pass phrase.

Now once you get into PGP and all that you're starting to enter the realm of the web mail vs the client mail application debate again. I personally prefer web mail and I prefer to keep important/confidential data safe by not sending it through email at all and using other methods.

As for Palin. Well, she probably picked a weak password. It's a common mistake that your common person makes. Problem is Palin is running for VP. She can't be just a common person with common mistakes anymore. If she can't keep her own email safe by picking a good strong password how would she keep the whole country safe from the dangers it faces if something happens to McCain? Hopefully she'll be smart enough to listen to any advisers she can get her hands on in that case.

[notsatch]

Congratulations, you've completely missed the boat on the Palin email hack while trying to turn this into a political forum! Now go have a cup of tea while you read up on the story.

[LuvThatCO2]

"As for Palin. Well, she probably picked a weak password. It's a common mistake that your common person makes. Problem is Palin is running for VP. She can't be just a common person with common mistakes anymore. If she can't keep her own email safe by picking a good strong password how would she keep the whole country safe from the dangers it faces if something happens to McCain? "

Um, Einstein, her password wasnt guessed. The 'hacker' used Yahoo's password reset system to get at her account. Anyone who hasnt been living under a rock the past few weeks knows this, which makes me wonder if you're really informed to be casting a vote.

[Imalittleteapot]

LuvThatCO2 : Nope. I'm not because I haven't been paying attention because I'm not voting this time. They all make me sick. But please explain to me how someone that can't keep their email safe can keep the country safe from terrorists? What if she was president? What if a cyber war broke out like the government and media has been trying to scare us of for years? Does she have what it takes to hack it?

[c|net Reader]

Teapot: As LuvThat mentioned, the hacker used the password reset option from Yahoo to retrieve the password. It matters not how strong the password is in that case. Obviously, the security question one selects matters, especially when the choices are stupid things for which others can find the answers.

[n3td3v]

MItnick is wasting his time, the contents of his hard drive can be sent to intelligence services headquarters by customs officials and cracked in minutes.

[Remo_Williams]

No, it can't. It really can't. TrueCrypt allows you to use more than one method, and the methods chosen are all too computationally expensive to crack with computers that exist today -- even the sci-fi ones at the NSA.

-R

[Penguinisto]

Minutes? No.

Days/Weeks? Maybe.

I don't care how big your rainbow table is - a decent encryption scheme that the NSA has no backdoor to is going to take awhile to brute-force into if Mitnick uses a sufficiently strong password.

[unknown unknown]

The default cipher is AES, which has been approved by the government for protecting all levels of classified information. I really doubt the government would adopt encryption that could be broken in minutes. Not to mention, the government held the competition to develop AES in the first the first place. Further, all the ciphers in the AES competition were scrutinized by several crypto analysts.

Baring human error in key management, the key lengths involved make brute forcing highly impractical. At very least everyone will be dead by the time a 128 bit key is found. TrueCrypt uses 256 bit AES by default, meaning it's exponentially more difficult. Even if they could try 100 trillion keys per second it would take them well over a billion years to try less than quarter of the possible keys in 128bits. By then the sun will have gone red giant an incinerated the Earth .

128 bits = 340282366920938463463374607431768211456 possibilities.
256bits = 115792089237316195423570985008687907853269984665640564039457584007913129639936 possibilities
I used the GNU Multiple Precision Arithmetic Library to calculate these numbers.

[GhostAlph]

Yay, another Mitnick-basher.

[jalteran]

Also, if you had noted in the article, "Because of that risk, he encrypts his hard drive before returning to the U.S. and encrypts all his confidential data, transmits it to servers in the U.S. and wipes the data from his laptop."

So he's not carrying any data that he wants to keep secret across customs, he's sent it encrypted over the 'net, and is coming in with "clean" hardware.

[rcardona2k]

Encryption itself is much more prevalent but behind the scenes like you said such as in SSL. Sadly for speed reasons even SSL uses the wickedly simple implementation of RC4 for bulk encryption, which I wonder how secure that is against modern compute power. AES is now getting adopted so the level of encryption may improve.

One of the biggest if not the biggest failures in computing is PKI, public key infrastructure, whether from fear that keys would be centralized and available to law enforcement to the lack of education for developers on public-key technologies. I thought for sure when the RSA patent expired there would be a mass adoption of PKI but alas it hasn't happen.

[EcuadorHomesOnline]

Companies and individuals are required to prove their identity to get an SSL certificate for their web hosting - if the same were applied to email security, it could reduce (or possibly elimniate!) spam, since this would not only provide secure communications, but sender verification as well. If everyone had their own key that would personally identify them, it would be very easy to reject "anonomous" email. Problem is three fold: we need a single standard for universal interoperability, no one trusts any one organization to be responsible for that standard, and everyone is now used to some anonimity in their email communications. Too bad.

[rapier1]

How would this be fundamentally different than a national ID?

[sythara]

It is national ID in a form. Many companies use Common Access Card (CAC) which uses PKI and all software including email client is told to use it. As in you digitally sign every email you send out. Great for official work email, horrible for average citizen sending out email to their buddies. What we need is for people to pick up the phone and call with important information, and not screw around with big brother style global security for the masses.

[bemenaker]

The main problem I have run into with encryption is ease of use. I would love to use encryption more widely, but in most cases, it is just too cumbersome. The whole disk encryption of laptop harddrive from the start via the bios is more along the lines of how simple it needs to be. Turning on encrypted folders inside Windows is pretty nice, but if you are logged in, that folder is open to whoever sits at your desk. Yes I know that one is really pretty trivial, but how about asking for a password first time I access it, and have the option to re-secure it when I'm done in that folder. That way a friend or a kid in my house can' t just open a folder and see all the encrypted contents. My way around that was to sign in as a different user that I only used to access those encrypted folders.

Not enough time is spent on making it usable to my 60 year old parents. If they can easily use the encryption features, it will be adopted more.

[Remo_Williams]

Whole-disk encryption is great, until your OS throws a failure because it didn't shutdown properly. Before whole-disk encryption, you could recopy the broken files and make manual edits without booting into the OS. What do you do now?

Let's say that works for you, that you perform incremental backups and you're good with that. Using DropBox and Password Safe, you can get exactly what it is you are looking to do: it will log you out of your Password Safe session if you suspend, go to screen saver, lock the console, etc. It will also timeout.

Furthermore, you can mimic the same thing with TrueCrypt, as it can be configured to relock on screensaver activation, suspend mode, timeouts, etc. Check them out.

-R

[rapier1]

The biggest hurdle is one you alluded to but never actually addressed. How to manage keys and certificates. How is responsible for them? How do you revoke them? How do you distribute them? How do you verify that the public key you get actually belongs to who you think it does? When you get right down to it encryption is easy - key management and infrastructure is tough problem. Ubiquitous encryption is going to depend on a solution to that.

[skswave]

We have to start somewhere. The easiest to use encryption for your whole disk is a Seagate FDE Drive on a Dell Lap top it sets up in about 1 min for an individual user and then it will provide hardware single sign on to your PC. This technology is an option on all new Dell PC and ships ready to use.
Secondly we need to push all of our providers to offer us Strong authentication using the Trusted Platform Module that is now on 250 million PCs and provides a common standards based hardware device to manage keys on the PC. The TPM would eliminate the need to login with passwords from your personal PC and would dramatically reduce the potential for theft of access to data

Steven Sprague
Wave Systems Corp

[Rock_Pool]

To encrypt, or not to encrypt: that is the question.
Whether ?tis nobler in the mind to suffer
The slings and arrows of user nonacceptance,
Or to take arms against a sea of exploits,
And by opposing end them? To encrypt: to authenticate;
No more; and by authenticate to say we end
The heart-ache and the thousand natural shocks
That disclosure is heir to, ?tis a consummation
Devoutly to be wish?d. To encrypt, to authenticate;
To audit: perchance to dream of security: ay, there?s the rub;
For in that effort of implementation what dreams may come
When we have shuffled off this mortal user apathy,
Must give us pause: there?s the respect
That makes calamity of so long life;
For who would bear the whips and scorns of user communities,
The oppressor?s ID10T error, the proud man?s denial that caps-locks was on;
The pangs of despised credentials, the law?s delay,
The insolence of the CSIO?s office and the spurns of the auditors
That patient merit of the unworthy takes,
When he himself might his quietus make
With a bare server? who would fardels bear,
To grunt and sweat under a weary implementation plan,
But that the dread of something after death,
The undiscover?d lost data from whose bourn
No system administrator returns, puzzles the will
And makes us rather bear those ills we have
Than fly to vendors that we know not of?
Thus conscience and user feedback does make cowards of us all;
And thus the native hue of resolution Is sicklied o?er with the pale cast of thought,
And enterprises of great pith and moment
With this regard their currents turn awry,
And lose the name of action. - Soft you now!
The fair McAfee! DLP, in thy orisons.
Be all my lost data sins remember?d.

Simon Hunt, CTO, McAfee Data Protection.
http://siblog.mcafee.com/?cat=41

[elinormills]

That's great! Nicely done.
Elinor

[igal_alkon]

it all comes down to ease of use.
95% of world users probably have no idea what encryption or PGP means.
with the use of USB products and fast Data Transfer rates, anyone, in seconds can copy data from their home PC.

and if you ask whom to blame? well, i think that would be both Apple and Microsoft, if both OS's had easy-to-use, easy-to-see and understand encryption options while user viewing his folders, maybe it would have been different.

[bob dow]

In the macintosh world, full disc encryption via FileVault (Apple's product) is a pain in the butt for back-ups. The entire encrypted disk image is backed up every time (i.e. no incremental back ups)

Users don't want to wait.

Don't even get me started on flash drives. The zero security versions are so cheap and are everywhere... the industry is just now telling consumers "oh wait! maybe you want to keep that stuff private... we can do that, but it costs more and it's not as fast as the thing we already sold you!"

This is definitely a case of trying to put the genie back in the bottle and trying to sell that idea to a user base that believes in the illusion of privacy because the industry selling the widgets didn't tell them any different.

[KOFury]

I founded my company, Essential Security Software, 5 years ago to remove the user difficulties experienced with using encryption. Unlike many other companies we have designed our product to be used by small and mid-sized business users. Thus, our products handle all key exchange in transparently.

Before designing our latest product we conducted extensive focus group research with small businesses all over the country. What we found is that it was important for our products not only to work with Outlook but any email client or service including GMail, Yahoo! etc. Also important was the ability for senders to have the choice whether or not thier encrypted email recipients should need to download software. Thus with our product email recipients do not have to download any software to view encrypted messages. Also important was the ability to add digital rights management controls that help prevent forwarding, printing, Prt+Scn, etc. Although DRM controls are much easier to circumvent, such as by taking a picture of the secure email with your cell phone. When selling email encryption to small businessessuch as law firms, we have found that DRM provides an important value-add.

Being that very few people actually ssem to care about their on-line privacy, we hope that recent legislation such as Nevada's new encryption law NRS 597.970 will help increase adoption and awareness of encryption. What's encouraging is that the encryption industry has really started focusing on making encryption products more useable.

[KOFury]

Contact: zachp@essentialsecurity.com
Website: http://www.essentialsecurity.com

[door_man]

Encryption DOES NOT MATTER.

If your account is protected by a password. You are dead. Your lock can be easily picked by guessing, brute force, keystroke logging, etc...

Not much else matters until we have something better than a password.

[door_man]

Encryption DOES NOT MATTER.

If your account is protected by a password. You are dead. Your lock can be easily picked by guessing, brute force, keystroke logging, etc...

Not much else matters until we have something better than a password.

[smode1]

Voltage also offers and email (and file & document) encryption solutions for individuals and business professionals, the Voltage Security Network (VSN). It makes email encryption for the regular consumer extremely easy and efficient. Using Identity-Based Encryption (IBE), this offering removes the need for digital certificates and can use any arbitrary string?such as an email address?as the public key. That means when you send an encrypted message, instead of spending extra time looking up your recipient?s public key, you simply enter their email address and click ?send secure.? It work seamlessly within your existing email environment, such as Microsoft Outlook. And possibly one of the greatest benefits of the VSN is your recipients need no software to view or reply to encrypted messages. Because what good is email encryption if only a select group of people can view secure messages? Partial security isn?t security at all. When pretty good isn?t good enough, there?s Voltage Security. Learn more at http://www.voltage.com/vsn/index.htm.

[Spectra18]

Working in the security industry, it's the same problem- people don't think they need protection until something bad happens... And yes, if Grandma can use the product then it will do well, too.
I've been using a product called eCipher to encrypt my emails and I love it. And Grandma doesn't need to do anything to read my emails, other than to click on a link.
Here, you try it:
<a href="http://www.eciper.com">www.ecipher.com</a>

[RobertFHarwood]

I use digital signature from Thawte within Outlook. Even if the receiver of an email doesn't have a digital signature, at least I have asserted that the email is indeed from me. Thawte email certificates are free and install in Outlook and other email clients, such as Eudora. They also work with browsers for encrypted sessions, being the keys for the HTTPS to use rather then passing them over the wire.
I have had almost no problems with Thawte. A problem was with the browser Opera.

[gsidman]

You are dead on. The average users cares not, nor can she use, the techy toys from PGP, Hushmail, etc. Absolute simplicity is the key, so to speak, and asking the general public to manage keys, passwords, etc. flat won't work.

WebLOQ has solved this problem completely with an email based communications ecosystem that delivers dual layer encryption for keyboard-to-keyboard security and privacy, with complete regulatory compliance reporting in a privacy space that is free of malware. WebLOQ runs on any OS, behind any email client, on any platform, including smartphones, and over any Internet connection. The user never even knows about keys and passwords and all private email is sent and recieved just as though it were regular email. You may download WebLOQ's free trial at www.webloq.com

George Sidman
Chairman, WebLOQ

The problem with most traditional S/MIME solutions, VeriSign/Thawte, PGP, etc, is that it requires that both the sender and recipient have their own certificate. If they don't, then you have to go out and buy one. Then you have to worry about sharing your public key. Then you have to renew the certificate when it expires. Then you have to save your old certificate should you want to decrypt any old messages. Too many things going on to make it easy.

What Voltage does is gives you true ad hoc messaging. The emails can be encrypted using something you already know, the recipients email address. On top of that, the Voltage solution has a key management solution that can generate keys on the fly.

Give it a look. http://vsn.voltage.com

[re_phil]

Hi, I personally recommend Steganos Privacy Suite. They have come up with an easy-to-use way of securely protecting your data and files. You can create encrypted hard drives in real time on PCs, Laptops, USB Sticks, etc... If you go on their website, you can even encrypt and decrypt your emails for free.

It's definitely worth a look! www.steganos.com

[uohaa]

Sarah Palin's email account, would Sarah Palins be able to use it?