Research Guides: data security and encryption 101: email and passwords

email encryption

Encrypt any message you wouldn’t feel comfortable sending on a post card.

(the CryptoParty handbook, Version: 2013-08-21)

From riseup.net: What is encrypted email?

Encrypted email is a way of keeping the content of your email safe from eavesdropping as it bounces around the internet. The most common type of encryption is OpenPGP (OpenPGP is the specification, PGP is “Pretty Good Privacy” and is proprietary, GPG is GNU Privacy Guard and is free software). There are many resources on the internet that can offer you a detailed explanation of how encryption works. For our purposes, there are three components that are useful to understand: public key, private key and passphrase.

Your public key is, as you can tell from the name, publicly available. Sometimes, people use keyservers to share public keys to make sending emails using encryption easier. Whenever you wish to send encrypted email, you must have the recipient’s public key. Similarly, whenever someone else wants to send you encrypted email, they must have your public key.

A private key is connected to exactly one public key. Without a private key, the content of an encrypted message is extremely difficult to extract. In the age of supercomputers, nothing is impossible, but decrypting a message without the private key is extraordinarily difficult. Your private key is extremely important and should be kept in a safe place at all times.

Your passphrase should be at least 21 characters in length, should contain UPPER and lower case characters, as well as symbols (&$"{@). Your passphrase unlocks your private key and permits it to be used, in conjunction with your public key, to send and receive encrypted email.

description of public/private keys with pictures
explanation of encrypted email services
outlook- digital ID or digital certificate
"A digital ID enables you to send digitally signed messages using Microsoft Outlook. A digital ID—also known as a digital certificate—helps prove your identity and helps prevent message tampering to protect the authenticity of an email message. You also can encrypt messages for greater privacy."
guide on using pgp using Thunderbird (email client)
send and receive encrypted email with public/private keys
virtru
proprietary email encryption service (free personal use option)
email self defense
guide to setting up email with GnuPG
GMail 2 Step Verification
not encryption, but can quickly reduce risk of unauthorized access

encrypting files

a possible alternative to encrypting email is to encrypt individual files to send through unsecured email. if you do this- do not send the key to unlock files in the same email (unless it is in a very clever code).

for microsoft word, excel, and powerpoint files, simply find: Files>Info>Protect Document, then select Encrypt with Password

see adobe's Securing PDFs with passwords

7-zip
open source file archiver that also encrypts documents. it is free, however is not highly intuitive. see FAQ and support forum

passwords

password managers (thehackernews.com)
explanation of password managers (what they are for, how they work) and recommendations for tools sorted by device type.
1Password
not wholly user friendly but extra secure with a unique access key for adding to new devices and periodic log-outs. syncs across devices by way of encrypted cloud storage. web-based, 30 day trial period.
LastPass
browser based and encrypted cloud storage. user friendly with possible security flaws for multi-user devices. added features assess passwords for strength and evaluates log ins for possible compromise.
KeePassX
encrypted password safe, not web based
KeePass
personal database that is "portable" by way of a USB drive- not web based. free and open source.