[messaging] EFF Secure Messaging Scorecard

Aaron Zauner azet at azet.org
Tue Nov 4 18:08:08 PST 2014

Hi Joseph,

Joseph Bonneau wrote:
> First version launched today: https://www.eff.org/secure-messaging-scorecard
> This was a collaboration between tech advisers (primarily Peter
> Eckersley and myself) and a good team of people with experience in
> journalism and activism and there were necessarily some compromises
> made. The primary goals here were:
> (a) simplicity for users (and journalists) to draw some conclusions
> about what's out there right now and we had to make a lot of compromises
> to keep things simple for end-users to understand.
> (b) reasonable carrots for some of the traditional messaging apps to add
> security features, get audits, and publish source code.
> Hopefully we will be launching a more detailed version next year with
> many more evaluation criteria but would be curious to hear feedback on
> this version from other folks working in this space.

What's completely missing is if a given software is free/open source.
The main point being: everyone can actually audit the codebase if
they're willing and capable. vs. closed source products that might have
undergone external audits.

Anyway. Good work.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: OpenPGP digital signature
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20141105/cc97a074/attachment.sig>

More information about the Messaging mailing list