13. July 2013
Actually it was a pleasure for me to see the GNOME privacy campaign being announced prior to recent developments of U.S. surveillance has become a rather big success and is heading for the 20.000$ goal quickly. However, I didn’t find much information for a roadmap about the plans to spend the money on.
There was a lot of press coverage in the last days that all the technology for encrypting your data in a way to make it much harder for secret services (and other so-called “security” agencies) is already there and that it is just missing the correct user interface. Some random ideas how I would imaging the next generation privacy desktop:
gnome-initial-setup should ask for your GnuPG-key before it even asks for any accounts and offer the option to create one and/or upload the public key to a popular keyserver and backup the private key somewhere. It should then automatically try to connect other accounts (e.g. Jabber) with the key. This setup step should feel more or less mandatory for the user – of course with the option to skip it.
E-Mail might not be as big for private communication anymore but it is still the way most businesses exchange data and information. For now, e-mail in GNOME is tightly connected to Evolution although, of course, it would be cool to also integrate encryption infrastructure in popular webmail services but I have not much idea if and how that would be possible.
However, lets stick to Evolution for now. Once you compose a mail Evolution would lookup the recipient(s) mail addresses locally and on a key-server probably also querying some information if PGP/MIME or S/MIME is supported. Once you click on sent and the recipients public key(s) is/are available Evolution will ask you to sent an encrypted mail (with the obvious always/never for this address/don’t bother me options). This should spread the use of encrypted messaging not only for real secrets but for any mail which will avoid the “you wouldn’t encrypt if you didn’t have anything to hide”-problem.
Empathy is the obvious choice here. All chats should be encrypted by default and I feel that the user shouldn’t even be queried if to encrypt of not because there is absolutely no reason why end-to-end encryption shouldn’t be used. Jabber supports encryption by default, it probably also works for most other jabber-based services if the client supports it but might run into problems with facebook-chat.
In addition and as a probably more educational use-case it would be cool to have a “Encrypt this chat” button that would give your chat partner hints how to configure his client to support encrypted conversations. As there are various programs for any platform that should be too difficult with a quick link to a wiki page.
The good thing: We are 90% there – all the technology is there, all the applications are there, it is just a matter of good user-interface design and bringing some bits together.
Some personal hint in the end: I won’t be at GUADEC this year because I planned holidays far before the final dates were announced…maybe see you all next year.