Email Security 101

Tomorrow evening, I’ll be discussing email security at the NYC Oath Keepers meeting. For whatever reason, I won’t have any bandwidth at the facility so I took a stab at creating my first screencast. This turned out to be a fun project as I discovered some very powerful (and extremely easy to use) software called OpenShot. There was no need to install or run in on my laptop. Instead, I just used recordmydesktop to create the videos and then pieced everything together on another box.

This video is my attempt communicate the following:

It can be very easy to spoof an email. Yes, I know SMTP can be hardened but I wanted to expose my viewers to the core issues.

Once an email is sent, it is accessible to anyone with access to the server where it is eventually delivered (or even the network, for that matter).

Email security is best addressed from an end-to-end perspective using public-key crypto.

TIP: You can expand the video below to “full screen” mode by clicking the >< icon in the lower right hand area (to the left of the Vimeo logo)

So go ahead and send me a email if you’d like. Just make sure you use my public key. If you would like to start using digital cryptography with your email but are not sure where to begin, you can start here.

Tags: , ,
Posted in Uncategorized | No Comments »

Leave a Reply