An ingenious team of Israeli security researchers at Tel Aviv University have discovered a way to steal secret encryption keys using a gadget so small it can be hidden inside some pita bread.
The post How to steal PGP encryption keys (using radio waves and pita bread) appeared first on We Live Security.
Dennis Fisher and Mike Mimoso discuss Facebook’s moves toward encrypted notifications and SHA-2 usage, the audit of GitHub SSH keys and the awesome OpenSesame garage door hack from Samy Kamkar.
In order to achieve this goal Facebook just announced in a blog post that is now offering you the ability to encrypt e-mails via OpenPGP, an email encryption system.
“To enhance the privacy of this email content, today we are gradually rolling out an experimental new feature that enables people to add OpenPGP public keys to their profile; these keys can be used to “end-to-end” encrypt notification emails sent from Facebook to your preferred email accounts. People may also choose to share OpenPGP keys from their profile, with or without enabling encrypted notifications”, says Facebook
So basically the social network will allow you to give it your public key so that mails you might receive from Facebook (for example password resets) will be encrypted. You can also enable encrypted notifications: Facebook will then sign outbound messages using your key so that you can be sure the emails are genuine.
The encryption system Facebook is using is OpenPGP where the PGP stands for “Pretty Good Privacy”. It’s one of the most popular standards when it comes to protecting email and should really serve its purpose well. Read this article if you want to find out more about Public Key Cryptography and PGP – it really will make the whole technique easier to understand.
The post Facebook Is Getting More Secure Thanks to OpenPGP appeared first on Avira Blog.
Facebook announced early Monday that has adopted OpenPGP encryption and will let users post their public keys on their profile.