web based shared secret symmetric encryption application
Randolph
rdohm321 at gmail.com
Tue Jul 22 09:54:49 PDT 2014
hi, you might want to have a look at the "Email Institution" Function
of http://goldbug.sf.net
this enables you to create within a p2p email system a virtual host,
which is hosting your key and message.
so the storage is not an encrypted apache, but a virtual institution
email provider on the network.
This is not browserbased, but clientbased. you can evaluate it within
a cryptoparty at Marseille.
In case this is not the fuction you want, you might want to look at
the Rosetta CryptoPad, which is encrypting the message and then you
can post it in any pastebin and your friend can grabb it there at any
time and decrypt. so this can be done in a browser.
Regards Randolph
2014-07-22 17:13 GMT+02:00 Cryptoparty Marseille <cryptomars at cryptoparty.fr>:
> Hi!
>
> I'm looking for a decent free and open source application that would
> work similarly to "Hushmail Express message"
> (https://help.hushmail.com/entries/351388-I-have-received-an-encrypted-email-from-Hushmail-how-do-I-read-it-)
> that would allow me to deposit an encrypted message on an apache web
> server that would be decrypted by the recipient using a shared secret
> (that's already established, so I don't need a key exchange mechanism).
>
> I read Tony's posts and his blog article
> (http://tonyarcieri.com/whats-wrong-with-webcrypto) and I'm well aware
> that browser based encryption is not optimal but I'm just looking for
> something slightly more secure than plain text email that could be used
> by an end user not willing to install GPG, not an NSA proof secure system.
>
> The (apache2/debian7) web server is physically under my control, I'm the
> only root (I hope! :-) and SSL/TLS is enabled.
>
> Thanks for your advice.
>
> cryptomars
>
More information about the cypherpunks
mailing list