[messaging] EFF Secure Messaging Scorecard

Michael Farb mwfarb at cmu.edu
Tue Nov 4 09:16:45 PST 2014 

Excellent work Joe, Peter, et al! This is going to be a great go to tool for a wide number of people.

Suggestions:
- It you want the tools to improve against their competitors, it would also be useful to see/rank how implemented features get graded. If the method of securing past communications against stolen keys gets a checkmark, how well does it fair among others with that checkmark? A, B, C, D?
- I echo Ximin for sorting by platform.
- I saw PGP tools for Mac, Windows and iOS, but not Android and some others - it would be great to see OpenKeychain and Engimail on this list.
- Of course it would also be great to list the SafeSlinger Messenger. :-)

Cheers,
Mike

Michael W. Farb
Research Programmer, Carnegie Mellon University CyLab
M 412-965-4725 - www.cylab.cmu.edu/safeslinger

On Nov 4, 2014, at 12:03 PM, Ximin Luo <infinity0 at pwned.gg> wrote:

> On 04/11/14 16:43, Joseph Bonneau wrote:
>> First version launched today: https://www.eff.org/secure-messaging-scorecard
>> 
>> This was a collaboration between tech advisers (primarily Peter Eckersley and myself) and a good team of people with experience in journalism and activism and there were necessarily some compromises made. The primary goals here were:
>> 
>> (a) simplicity for users (and journalists) to draw some conclusions about what's out there right now and we had to make a lot of compromises to keep things simple for end-users to understand.
>> 
>> (b) reasonable carrots for some of the traditional messaging apps to add security features, get audits, and publish source code.
>> 
>> Hopefully we will be launching a more detailed version next year with many more evaluation criteria but would be curious to hear feedback on this version from other folks working in this space.
>> 
> 
> Nice!
> 
> - What determines "Featured"? It took me a while to find ChatSecure. Probably, the sort of person reading this is more interested to know "what's the most secure".
> - Allow filtering by platform. Perhaps this could even replace "Featured".
> - Make it more visually obvious that the columns are sortable. I only found this out by accident. I thought clicking on the columns would take me to the "explanation".
> - Would be good if the "sort" clicking sorted "Secure" by default. At the moment it sorts "Insecure" - i.e. you have to click twice to get the secure ones at the top.
> - Would be good if it preserved the relative ordering of previous sorts. Then I can click once on all the columns to "sort by most secure", going by the columns that I prioritise the most.
> 
> X
> 
> P.S. In the time it took me to read this, I see that dkg has also suggested ChatSecure should be in "Featured". :)
> 
> -- 
> GPG: 4096R/1318EFAC5FBBDBCE
> git://github.com/infinity0/pubkeys.git
> 
> _______________________________________________
> Messaging mailing list
> Messaging at moderncrypto.org
> https://moderncrypto.org/mailman/listinfo/messaging

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20141104/f654777b/attachment.html>

More information about the Messaging mailing list