Want to encrypt your way past the NSA? Good luck with that

NSA-pixelatedI’m smart, right? I’m technology-savvy. Hell, you might even call me an expert on some of this crap. But none of those descriptors seemed to matter when I dipped my toes into the murky pool of encryption – the one and only technology that promises to keep out the NSA – or at least slow it down – besides, apparently, typewriters.

While many of you may claim to have nothing to hide, I actually did – well, I thought I did anyway. I am currently working on a story that involves passing along some potentially sensitive information with some pathologically privacy-minded individuals. Through the course of my reporting, one of my contacts requested that we communicate via encrypted email, using an encryption standard known as PGP, or Pretty Good Privacy. Great, I said. Let me just figure that out real quick and I’ll get right back to you.

Wrong! Turns out, using PGP is more complicated than building a national park on the Moon.

Cryptography is necessarily complex – if it weren’t, it wouldn’t be secure.

The original PGP encryption software is now owned by Symantec, which has the audacity to charge money for its product. Lucky for me, a number of open-source options are available. Do a few Google searches, and you’ll find yourself at the home of Gnu Privacy Guard (GPG), which has released versions of OpenPGP software for both Microsoft Windows and Apple OS X machines.

As a Mac user, I opted for GPGTools. The download is straightforward.  The creators were even kind enough to provide a handy tutorial for how to get started – one of the few PGP tutorials not written exclusively for computer geniuses with Asperger’s.

PGP basically works like this: A piece of software (in my case, GPGTools) generates two PGP encryption keys. One of these keys you keep private. The other, your “public key,” you share with whomever you want to send secret messages.

This sharing of keys is where things start to get overly complicated. Most people who use PGP upload their public key to a key exchange, which makes your key searchable (as long as the person doing the searching knows what you’ve named yourself on the the key exchange). Or you can share you public key some other secure way – snail mail, maybe? Carrier pigeon? Long-range ballistic missile? Maybe you could just meet up in the basement of some parking garage, Deep-Throat style. The possibilities here are virtually endless – and they all kind of suck.

To send your friend an encrypted email, you use his public key to encrypt the message. He then decrypts the message with his private key. For him to send you an encrypted message, he uses your public key to encrypt, and you decrypt with your private key. Are you still with me?

Or you can share you public key some other secure way – snail mail, maybe? Carrier pigeon? Long-range ballistic missile?

Well, it doesn’t matter because that’s about as far as I got. GPGTools seems to act as a kind of plugin for Apple’s Mail app. Which, from what I could decipher, enables a couple of buttons in Mail to now do, um, something that they didn’t before. But I still have yet to figure out how to successfully encrypt or decrypt an email using the software. 

Now, there are some more user-friendly options out there. The Mailvelope plugin, for example, is actually a bit easier to use than GPGTools, but still comes with all the other complications inherent with PGP. Another option, SecureGmail, is a simple-as-pie browser plugin for Chrome or iOS. But it uses something called symmetric encryption (as opposed to PGP, which is a form of asymmetric encryption), and relies on you to come up with a quality password to protect your emails – something we all know ain’t gonna cut it – and then to share that password with your contacts in a way that makes the whole exercise futile.

None of my bickering is meant to dog on the clearly brilliant minds working to build these encryption tools. Cryptography is necessarily complex – if it weren’t, it wouldn’t be secure. But using it needn’t give you an aneurism. Fortunately for the rest of us, there are people currently working very hard to solve the usability problem, including the teams behind the plugins listed above, The Pirate Bay guys behind the new Heml.is app, and many others.

Until these developers get it right, most people just won’t go through the trouble of figuring this stuff out – especially since encrypting your communications can reportedly make you more of a target for the NSA. That’s not to say doing so is an impossible riddle or not worth the effort – strong encryption really is the best option we have. But the barrier to entry here is some “Game of Thrones”-level nonsense.

At the end of the day, my contact and I just decided to talk on the phone – what he had to tell me was far less sensitive than he first made it out to be. So, theoretically, anyone could have listened. I can only hope that I have this PGP thing figured out by the time I actually have something to hide.

The views expressed here are solely those of the author and do not reflect the beliefs of Digital Trends.


I tried an LTE laptop for a month, and I wasn’t really convinced

LTE laptops offer up plenty of benefits and are becoming more common. After spending one month with one in my daily life in New York City, I really wondered if it is something that consumers really need in their lives.
Product Review

How does the sleek MateBook X Pro hold up to the modern day competition?

Huawei impressed us with the MateBook X, a solid competitor to the 12-inch MacBook that beat Apple at its own game. Now, Huawei is taking a shot at premium 14-inchers with the MateBook X Pro, but it’s not without oddities – like a…

New ‘Battlefield V’ patch gives Nvidia’s ray tracing support a chance to shine

‘Battlefield V’ is the first game to use Nvidia’s ray tracing support, now available with the RTX 2080 and 2080 Ti graphics cards. The feature can, in an ideal scenario, make the game look better, but the performance hit may not be…
Product Review

The competition was fierce, and this is the best TV of 2018

With stellar picture quality, excellent ease of use, and rich features, the LG C8 OLED is the best TV you can buy in 2018, but that doesn’t necessarily mean it is right for you. Check out our review to learn more.
Home Theater

Budget TVs are finally worth buying, and you can thank Roku

Not all that long ago, budget TVs were only worth looking at if, well, you were on a budget. Thanks to Roku, not only are budget TVs now a viable option for anyone, but they might even be a better buy than more expensive TVs.

Smartphone makers are vomiting a torrent of new phones, and we’re sick of it

Smartphone manufacturers like Huawei, LG, Sony, and Motorola are releasing far too many similar phones. The update cycle has accelerated, but more choice is not always a good thing.
Home Theater

The Apple AirPods 2 needed to come out today. Here are four reasons why

Apple announced numerous new products at its October 30 event, a lineup that included a new iPad Pro, a MacBook Air, as well as a new Mac Mini. Here are four reasons we wish a new set of AirPods were on that list.

Do we even need 5G at all?

Faster phones, easier access to on-demand video, simpler networking -- on the surface, 5G sounds like a dream. So why is it more of a nightmare?

Razer’s most basic Blade 15 is the one most gamers should buy

Razer's Blade 15 is an awesome laptop for both gamers, streamers, professionals, and anyone else needing serious go in a slim profile, but its price is out of reach for many games. The new Blade 15 Base solves that problem with few…

Going to hell, again. The Switch makes 'Diablo 3' feel brand-new

I've played every version of Diablo 3 released since 2012, racking up hundreds of hours in the process. Six years later, I'm playing it yet again on Nintendo Switch. Somehow, it still feels fresh.

‘Fallout 76’ may have online multiplayer but it’s still a desolate wasteland

"Is Fallout 76 an MMO?" That depends on who you ask. Critics and players often cite its online multiplayer capabilities as a reason it qualifies. Yet calling the game an MMO only confuses matters, and takes away from what could make…
Digital Trends Live

Microsoft has #*!@ed up to-do lists on an epic scale

Microsoft has mucked up to-do lists on a scale you simply can’t imagine, a failure that spans multiple products and teams, like a lil’ bit of salmonella that contaminates the entire output from a factory.

As Amazon turns up the volume on streaming, Spotify should shudder

Multiple players are all looking to capitalize on the popularity of streaming, but it has thus far proved nearly impossible to make a profit. Could major tech companies like Amazon be primed for a streaming take-over?

Throw out the sandbox. ‘Red Dead Redemption 2’ is a fully realized western world

Despite featuring around 100 story missions, the real destination in Red Dead Redemption 2 is the journey you make for yourself in the Rockstar's open world, and the game is better for it.