The Crypto Bone

privacy and secure communication
under your control

    

Crypto Bone ALL-IN-ONE

For some time now, the "cryptobone2" control program (the GUI) is distributed together with a complete software-based Crypto Bone (ALL-IN-ONE). Users who install the RPM packages or the DEB packages on their Linux system have a Crypto Bone up and running in seconds. The use of an external device is not necessary to get started with the Crypto Bone software.

But why does the local, ALL-IN-ONE version even exist, if performing all message encryption and decryption inside an isolated, separated and secure environment is one of the benefits of the external Crypto Bone?

The Hen-And-Egg Problem

Well, not everyone has such an additional external device ready at hand.

And, if you're using the external Crypto Bone, message you will sent out, will eventually reach people who don't have a separate external device .

Thus very few people will be able to use this kind of secure communication if using an external device were mandatory.

On the other hand, checking the software - and even the core software - for security only pays off, if many users rely on this software day-by-day. Only if the Crypto Bone's user base has become large enough, security experts will take the time to poke inside the software for bugs and security problems.

I've asked a number of people to contribute to the code review, but they all seem to think that unless the user base raises considerably, no-one will look at the source code, even if it is available from day one of the development.

I can understand that code review is a painful and hard job, that requires a lot of detailed, fiddly work, and no little amount of dedication. To make the core software more accessible, I have added extensive comments in the software version 2.0.

And in order to increase the Crypto Bone's user base, I've developed a software-only version of the Crypto Bone that'll run on a single Linux machine. In developing this version, I tried to simplify the tasks of key handling, and thus I've developed a program that lets you switch from the local Crypto Bone to the external one (and back) with the push of a button.

As it is now much easier to use the Crypto Bone, I hope people who use it now, will eventually be interested in making sure that the software base is secure.

From version 1.6 the CryptoBone provides a new secure message exchange method called Safe Webdrop. This new exchange mechanism makes use of a https-enabled web server that is under the control of an administrator that the users can contact directly.

This method also provides the use of large attachments which are AES encrypted like the messages. SafeWebdrop can easily been adapted to the needs of an organisation or company so that the user base may well enlarge with this new transport mechanism.