iOS Encrypted Notes

In the past I have recommended Codebook Secure Notebook as an alternative to iOS’s native notes application.  I even went so far as to recommend NOT using the native Notes app.  However, I have recently completely reversed my position on this.  A third-party app is no longer needed to secure your notes.  Beginning in iOS 9.3.2, notes in the native Notes application can be secured with a password.  When password protected, notes are encrypted with AES-128.  This eliminates the need for a third-party application, which reduces overall attack surface.  Taking advantage of iOS encrypted notes is extremely easy and intuitive. Continue reading “iOS Encrypted Notes”

Review: Threema Secure Messenger

It seems that encrypted messaging systems are all the rage these days.  I’m not complaining – this is a very good thing.  Even WhatsApp recently announced it would implement strong end-to-end encryption using Signal’s excellent protocol.  I think this is great – a billion users will be using end-to-end encryption by default.  There is still room, however, for dedicated secure messaging apps.  Threema Secure Messenger is one of those apps.  While many of the features mirror apps like Signal and Wickr, there is still room on my phone for Threema. Continue reading “Review: Threema Secure Messenger”

COMSEC: Signal Private Messenger

Signal Private Messenger is a free application, and my new favorite encrypted communication solution.  Signal supports both voice and instant messaging (texting) in a single app.  It is incredibly easy to use, and convince others to use.  There is no complicated setup and no username or password to create and remember.  This app is incredibly intuitive and resembles native phone and texting applications.

Signal uses your phone’s Wi-Fi or data connection.  Signal has replaced the legacy RedPhone and TextSecure apps for Android and merged them into a single platform.  To use Signal Private Messenger simply install the application.  You will be prompted to enter your telephone number for verification.  I have successfully used a Google Voice number for this, even though Signal specifically warns that GV numbers will not work.  Full disclosure: I have also seen GV numbers fail.  This is the ONLY reason for which I use a Google Voice number.  I have no problem with this because the number is only used as an identifier and no data is sent though Google after the initial verification message.  The app will verify the number by sending you a code that you must enter into the application.  No other personal information is required or requested.

Signal

If you allow Signal Private Messenger to access your contacts it will identify the ones who have Signal installed.  There is one slight downside to the way Signal identifies its users: in order for others to contact you via Signal they must have the telephone number you used to register the app in their contacts.  This requires that you give out this number to others with whom you wish to use Signal.  For this reason I recommend setting up a Google Voice number that is used only for Signal, and giving that number out to friend, family, and business contacts that are likely to use Signal (or be persuaded to), rather than giving out your real phone number.  I will post in the future about why giving out your real phone number may be a bad idea.

Signal’s interface is almost disconcertingly simple.  Tapping the “+” icon in the upper right of the interface a list of your contacts who have Signal installed.  Tapping one of these contacts will open a new message to that contact.  From there you can send a text message, photo, or video, or type the handset icon to initiate a voice call.  In the search bar on this screen you may input a telephone number, which Signal will then search to see if the number has the app installed.  Once a call is initiated a more typical phone interface is displayed with some standard phone options to mute the call or use the phone’s speaker.

The call interface will also display two random words.  The words displayed will change with each voice call but should match on both handsets involved in the call.  These words are used to ensure the call is not being tampered with by a man-in-the-middle.  If an attacker were to successfully get in the middle of a call each phone would display different authentication words.  This is becasue each handset would establish a key with the attacker rather than the intended recipeint’s handset .  I recommend ALWAYS validating these words at the beginning of each conversation made over Signal.  This is especially important before engaging in sensitive communications.  The messaging portion of the application is likewise incredibly simple.  Messages are composed and set like they are in any other messaging application.  Attaching a file is as simple as tapping the paperclip icon beside the compose pane.  Signal also supports group messaging.

Signal is one of the best privacy-enhancing applications available (especially considering its cost) and I strongly encourage its use.  It’s encryption utilizes the “axolotl ratchet”, a system of perfect forward secrecy.  Perfect forward secrecy means that each message is encrypted with a unique, ephemeral key.  If one message is decrypted it has no impact on the others since each has a unique key.

As pointed out by the grugq, however, Signal does leak a great deal of metadata about you.  This includes your contact list, who you talk to, and the frequency with which you talk to them.  This metadata is certainly no worse than that generated by your normal telephone conversations.   It is also not any worse than that created by other encrypted messaging applications.  For this reason it may not be suitable for defeating certain threat models.  For encrypting your day-to-day comms that would otherwise be made through insecure means, Signal is a major upgrade.  Signal is funded by donations and grants, and much of the work in developing and maintaining the app is done by volunteers.

Signal Private Messenger is free and available in the App Store and on Google Play.  For more information on Signal visit https://whispersystems.org/blog/signal/.

Secure Notes for iOS: Codebook Secure Notebook Update

One of my favorite features on my iPhone is the ability to take notes.  Sadly, one of my least favorite features of my iPhone is the Notes’ inability to be encrypted or password protected, and its annoying tendency to backup to email accounts when you least expect it.  Because of the lack of security inherent in the native Notes app I began looking for a replacement several years ago and found Codebook Secure Notebook.
CodebookIconRefresh-1024

Codebook is a refreshingly simple app that encrypts your notes using AES-256.  Codebook also has some other cool security features.  It has a pretty standard Auto-Lock function that locks the app after a specified period of time ranging from one minute to one hour, and allows you to disable Auto-Correct.  Toggling the Auto-Correct slider to “off” prevents the phone’s dictionary from inspecting the contents of your notes, potentially preventing data from leaking in the OS from Codebook.  This is important if you store passwords, credit card numbers, or other especially sensitive data in this application.  The final setting that deals with security is Pasteboard: Clear on Exit.  This clears your clipboard when you exit or minimize the application.  This is helpful if you are copying text within Codebook, but you will want to leave this turned off if you copy text from Codebook into any other application.

Codebook does look dated (think iOS 5- or 6-ish)  though, and at the time of this writing has not been updated since version 1.6.4 which was released in January of 2013.  This gave me some pause when writing about the app in Your Ultimate Security Guide: iOS.  Though the look of the app doesn’t really matter I had real questions about whether or not it was still being supported.  The good news is that, yes, Codebook Secure Notebook is still being supported and an update is on its way very soon!  I had the opportunity to TestFlight this app and I am sharing a few screenshots below.

Codebook is everything I like in an app: simple, uncluttered with superfluous features, and secure by default.  I am incredibly pleased to know that Codebook will be around for the foreseeable future.  I would love to see a version of Codebook for Android, as well.  Codebook Secure Notebook costs $3.99 in the App Store but is money well spent.

IMG_2686 IMG_2690

IMG_2688 IMG_2689