PointMX - Send encrypted email from your smartphone

Happy holidays, everyone. We just wanted to make a quick announcement that we've released a mobile web version of our PointMX encrypted email service. It's free, and will work in any smartphone that has a robust JavaScript implementation in its browser.

To try it out, simply point your smartphone browser to the following address:

https://www.completelyprivatefiles.com/services/smx/m/

It works just like the standard PointMX service does. That is, you enter a passphrase, and your mobile browser encrypts the message before it leaves your device. That's why it requires a robust JavaScript implementation.

Our testing has shown the service to work in the default browsers of the following devices:

• Android phones
• iPhone
• Late model BlackBerry phones using OS v6
• Windows Phone 7

The default browser in previous versions of BlackBerry has not worked with the app. However, PointMX Mobile has been shown to work fine on an older BlackBerry device running OS v4.5 using the Opera mobile browser.

May you enjoy secure, private mobile email this season. :)

AccountKeeper Lite - store passwords securely in Google Docs

We've recently released a free Gmail Gadget called AccountKeeper Lite. It's a Java applet that loads in your Gmail account and allows you to store accounts and passwords securely in Google Docs. This means you can access your account data from any Internet connected computer, since it's stored "in the cloud".

If you want to try it out, simply click the link above. In this post, we'd like to discuss how the security works in a little more detail. Storing important data like accounts and passwords remotely means you need to be certain of how the technology is protecting your data.

AccountKeeper Lite works on the following principles.

Your accounts and passwords never leave your computer without being encrypted first.

Since AccountKeeper Lite is a Java applet, the encryption and decryption happens on your computer, before it's sent to Google Docs. When you click to save your data, AccountKeeper Lite encrypts the data first, then transfers it to Google Docs, to a special encrypted document. When it loads the data from Google Docs, it downloads the encrypted data to your computer, then decrypts it. At no time are your accounts ever out of your hands without being encrypted.

Strong encryption.

Your data is encrypted with the industry standard 128-bit AES encryption algorithm. This encryption method has been adopted by the United States government as a secure standard for encryption.

Your key is separate from your data.

Key management is a difficult aspect of encryption. A key is what is used to decrypt your data. So it's vitally important to protect and keep your key secret.

Most people can't remember a 128-bit key. E.g. here's what one looks like:

89c99ef4df29105f97b96b1d6c154c4b

So asking users to store the key, write it down, commit it to memory, etc, is difficult and prohibitive. This difficulty leads to its own set of security failures.

Our solution is to make the key available on-demand, but kept separate from your encrypted data. You are the only one able to bring the key and encrypted data together.

Your account data is encrypted and stored by AccountKeeper Lite in Google Docs, using your Google username and password.

AccountKeeper Lite creates an "access token" based on your username and password, using strong hashing techniques, and that is used to request a key from CompletelyPrivateFiles.com.

We have no knowledge of your Google Docs password, and Google has no knowledge of your access token to retrieve the key. Only you know the necessary pieces to of information to obtain both.

Additional passphrase security.

We provide an additional field on login to AccountKeeper Lite, called a passphrase. This is an optional field that you can use to improve your account security further. If you enter a value for the passphrase, this is used in addition to your account data to generate the access token used to retrieve your encryption key. We recommend using this field, even if you enter a simple, easy to remember value.

With these methods in place, we feel that AccountKeeper Lite provides the best of both worlds. Easy, online access from anywhere, and strong security and protection of your important account data.

Encryption client for Digitalbucket.net version 1.0 released

Thanks to everyone who tried out our encryption client for Digitalbucket.net, and for the feedback you've provided.

We just wanted to let you know that we've officially taken our encryption client out of beta. Version 1.0 is now available for download from the following URL:

http://www.completelyprivatefiles.com/services/dbnet/

The client has made it through our testing period and we're confident it's ready for prime time. Feel free to let us know your thoughts, or how the client might further be improved.

Box.net add-on Dashboard update

We've just completed an update to the Box.net add-on dashboard. If you're unfamiliar with our service, our Box.net add-on allows you to seamlessly encrypt and decrypt files from within Box.net. Our add-on requires a separate set of credentials from Box.net to provide access to your encryption key. This is a necessary security feature, since it's important to keep your online key stored separate from your online, encrypted data.

The Dashboard allows you to manage your keys, your account with us, and gives you extra functionality, like directly encrypting and decrypting files on your computer. It also provides a Windows-based utility for encrypting files offline.

We've changed the dashboard interface to improve the user experience and give it a more cohesive look-and-feel. Here's a screenshot (click to enlarge):

On a side note, we've change our price for the Box.net add-on. The Lite version is still free and provides encryption and decryption of files from Box.net, plus Dashboard access. You will have the option to upgrade to a Professional account from within the Dashboard. This will give you the additional features of Encryption for sharing & Emailing encrypted files. The new price is $79.99 per year for a Professional subscription.

SMX secure email service is now PointMX

I just wanted to take a moment to let everyone know that we've renamed SMX, our secure email service. It's now called PointMX.

We discovered another service with a similar name, http://smxemail.com/, and although different in scope, their service also provides secure email services. We don't want to step on anyone's brand, nor do we want there to be confusion about what our service provides.

Of course along with the difficulty of a name change, there also exists an opportunity to update and revise the look and feel of the service.

PointMX can be accessed from our site at the following URL:

https://www.completelyprivatefiles.com/services/smx/

We've made the message area much larger, making it easier to enter more detailed messages.

PointMX is also a gadget that installs into your Gmail account. Here's a screenshot (click to enlarge):

When you click the button in the left menu pane, the above gadget loads and allows you to send messages encrypted by your browser to anyone with an email address. With the name change, we've taken the opportunity to make the gadget integrate more seamlessly with Gmail, and better match its look-and-feel.

To install this gadget, you need to log into Gmail and do the following:

1. Enable Add any gadget by URL feature. Go to Settings -> Labs and click Enable on the Add any gadget by URL option. Scroll to the bottom, and click Save changes.

2. Add our gadget. Go to Settings -> Gadgets and where it says Add a gadget by its URL paste in the below address:

https://www.completelyprivatefiles.com/services/smx/gadget.xml

Enjoy.

Send encrypted messages with our Gmail Gadget

We've recently released a Gmail Sidebar Gadget based on our Secure Message eXchange (SMX) service. This allows you to send secure, encrypted email messages without leaving your Gmail account.

Here's what the gadget looks like in your Gmail account (click to enlarge):

To install this gadget, you need to log into Gmail and do the following:

1. Enable Add any gadget by URL feature. Go to Settings -> Labs and click Enable on the Add any gadget by URL option. Scroll to the bottom, and click Save changes.

2. Add our gadget. Go to  Settings -> Gadgets and where it says Add a gadget by its URL paste in the below address:

                   https://www.completelyprivatefiles.com/services/smx/gadget.xml

That's all there is to it. You will now see the Encrypted email button in the sidebar. Click that and the SMX form loads.

SMX and email clients

We've recently launched a free email service that allows you to send messages securely from your browser. The messages are encrypted before they leave your computer, meaning that as they travel through the Internet and email servers, they are totally confidential. You can find out more from this blog post.

The way SMX works, is it sends the encrypted message as an HTML form to your email server. The problem that arises is that some email clients will not allow HTML forms to display, for security reasons. Email marketing firm CampaignMonitor explains it pretty well on their blog.

Some clients, like Outlook 2007, won't display the form, but allow you the option to View in browser if you trust the source. Here's how to do this with an SMX message:

Other clients, like Gmail, simply warn you of the danger, and let you go ahead if you think it's safe. Most clients should have some option for allowing you to view messages with forms, and as we find more we'll try and post them.

Send encrypted messages with SMX service

We'd like to announce the availability of a new service, in beta, that allows you to send encrypted messages to any email address, directly from your browser. The message is encrypted by your browser before it leaves your computer, and stays encrypted until it's loaded into the browser of the intended recipients.

While your message moves through the Internet, into mail systems, etc, it's secured with 256-bit AES encryption. Only when it reaches its destination is it decrypted.

https://www.completelyprivatefiles.com/services/smx/

The service is free to use, and based on a forthcoming API. So if you've got a confidential message to send, go ahead and give it a try!

If you have questions or feedback, you can email them to support AT completelyprivatefiles.com, or leave a comment below.

Update to Digitalbucket.net client - nearing release

We are nearing a full release of our encrypt before upload Windows client for Digitalbucket.net.

DigitalBucket.net is a web-based file management service, similar to Box.net and, now, Google Docs (with their recent 'upload any file' feature).

We've created a .NET client that connects to DigitalBucket.net and allows you to manage your files much like you do in My Documents, while keeping them absolutely private using encryption. Here's a quick rundown of features.

• Files are encrypted before they leave your computer. They never enter the cloud without being encrypted first.
  
• Just double-click any file to automatically download, decrypt, and edit it. Just like accessing files from My Documents.
  
• This is a fully integrated Windows application, so it gives you quite a bit more power than a web interface, such as letting you drap-and-drop files to encrypt and upload them to DigitalBucket.net.

This update

With this update, we're nearing a full release. Our current status is still beta, but that should be changing shortly. Here are the new features.

The login screen lets you connect to Digitalbucket.net and retrieve your documents. You can now cache your password if you're on a trusted computer. The client also works behind a proxy, and will prompt you for proxy settings if necessary.

We've added more right-click capabilities, to provide Digitalbucket.net management functions like tagging and publishing. You can tag files and folders, list tags for a file, and remove tags. You may also publish files, which gives you a link you can send to collaborators.

The Actions menu allows you to jump out to Digitalbucket.net in your browser, in case you need to access the full features of their web interface. It also lets you list all your tags and click to view items with a given tag.

To try out this release, click here.

There is nothing to install. Simply download dbnet.exe and run it. Requires .NET Framework 2.0 or newer. If you have any questions or feedback, you can comment here, or send them to support AT completelyprivatefiles.com.

Upgraded add-on for Box.net

We've recently changed our encryption add-on to work using client-side pop-up windows. This gives us more flexibility and power in providing encryption for your files, and minimizes the number of options you need to click through. The new add-on is fully compatible with the existing one. This means that files encrypted with one may be decrypted with the other, and vice-versa.

We recommend switching from the current add-on to the new, enhanced one, but both will continue to be supported.

Watch a video of the new add-on (4 minutes 14 seconds)

How to switch to the new add-on

It's quite simple to switch. Simply log in to Box.net, then visit the existing add-on:

https://www.box.net/services/completelyprivatefiles

Click Remove Application. Then, go to the new add-on:

https://www.box.net/services/completelyprivatefiles2

Select Add Application. That's it, you're done. If you have any questions or suggestions, please email them to support@completelyprivatefiles.com.

Update to Digitalbucket.net client

We've made a few changes to our Windows client for Digitalbucket.net. This client is a full Windows application that connects to your Digitalbucket.net account, and ensures data is encrypted before it ever leaves your computer. For more details, read this post.

The client is still in beta. In this update we've added the ability to drag multiple files from Explorer, and encrypt then upload to Digitalbucket.net. Got a selection of files and want to quickly and securely put them in the cloud? This will do the trick.

The update is available at the following link:

http://www.completelyprivatefiles.com/dbnet/b/03/dbnet.exe

Enjoy! And as always, send us feedback via comment or email at support@compeletlyprivatefiles.com.

Video - making your data private in the cloud

Here's a little video analogy of what our service is like. Hint: storing your files in a safe.

Client-side encryption for Box.net

We've recently made some changes to our client-side encryption utility for Box.net. You get this utility when you sign up for our Box.net encryption add-on. The utility allows you to encrypt and decrypt files in  Windows, and is compatible with our web-based add-on, which means you can decrypt files you encrypted using your web browser.

By mapping a drive to Box.net and using our utility, you can achieve client-side encryption that is fully compatible with our server-side encryption add-on. Here's how to do it.

First, you will need to setup a WebDAV connection to Box.net.

On Windows 7, do the following:

• Click Computer, then 
• Map Network Drive, and choose "Connect to a Web site...". 
• Then, choose custom network location.
• Enter http://www.box.net/dav in the address field. You will be prompted for your Box.net username and password. I would suggest checking the box that says 'Remember my credentials'

Next, you'll need to install our client-side encryption utility. Login to the dashboard --

https://www.completelyprivatefiles.com/services/box/dash

and follow the instructions to download and install the client-side utility.

When you initially launch the client utility, you will need to set your encryption key. Follow the instructions to make it match the one you use online with Box.net.

Now that you've set your offline key to match your online key, you can use the utility to encrypt or decrypt files on your local hard drive or the Box.net network drive, and copy between the two.

Note: You can access the Box.net drive on Windows 7 by going selecting Computer from the Start Menu, and going to Network Locations.

Important update to the Digitalbuck.net client beta

We've recently made a small but significant patch to our encrypt-before-upload client for Digitalbucket.net that fixes a problem that could, in some cases, prevent users from retrieving their keys. We have a workaround in place should someone encounter this scenario, but we strongly encourage current beta users to do the following:

(1) With your existing client, download and decrypt all your files currently stored on Digitalbucket.net

(2) Delete your encrypted files on Digitalbucket.net -- be sure they've all been downloaded and decrypted first [step 1]

(3) Download the updated beta client --
http://www.completelyprivatefiles.com/dbnet/b/03/dbnet.exe

(4) Log in with the updated client and then re-upload / encrypt your sensitive files with the client update you downloaded in step 3.

Also, once you have the new client, you should backup your encryption key. To do this, open the client, select Actions -> Backup encryption key

If you need further assistance, please email support@compeletlyprivatefiles.com.

First time you've heard about this client? More details here:

http://www.completelyprivatefiles.com/blog/a/?u=2010/01/digitalbucketnet-net-client-update.html

A view of encryption

Most people have an understanding of what encryption does – that it hides important information. But sometimes, it helps to actually see what you're talking about. Below is a sheet used to give a quick visual impression of what happens to data by encrypting it.

A view of Encryption

How to encrypt data in Box.net

We've recently made a demo that shows how you can use our add-on for Box.net to easily encrypt your files.

It demonstrates how to render your files private with encryption, as well as how to create an online, confidential workflow using Webdocs + encryption.

Enjoy!

Why encryption for the cloud is a good idea

Here's a small presentation that sums up why encryption is important for users of cloud services. The slideshow sums it up neatly, so we won't waste any extra words in this post. Enjoy!

DigitalBucket.net .NET client update

Development continues on our Windows client for DigitalBucket.net, and we still need beta testers! Read on.

If it's your first time coming across our site, or this product, here's a quick run-down:

DigitalBucket.net is a web-based file management service, similar to Box.net and, now, Google Docs (with their recent 'upload any file' feature).

We've created a .NET client that connects to DigitalBucket.net and allows you to manage your files much like you do in My Documents, while keeping them absolutely private using encryption. Specifically this client:

• Encrypts files before they enter the cloud, so your data never leaves your computer without being made completely private first.
• Lets you double-click to edit files, even though they're in the cloud and encrypted! Similar to My Documents, just double-click the file you want to edit, and our client automatically downloads, decrypts, and opens it in your editor, e.g. Word, Excel, etc.
• Is a fully integrated Windows application, so it gives you quite a bit more power than a web interface, like letting you just drap-and-drop files to encrypt and upload to DigitalBucket.net

Read this post if you want a bit more detail.

This is an update to the client, which is in beta. So we've fixed some issues, and also added the ability to right-click on a file and Download encrypted. This allows you to save a file locally in an encrypted format. Normally, the client would decrypt after it downloaded. Here's a picture:

You can download the update here:

http://www.completelyprivatefiles.com/dbnet/b/03/dbnet.exe

No installation is necessary. You just download it and run it. You must have a DigitalBucket.net account first, of course.

We look forward to hearing your thoughts. Leave us a comment about the beta, what you like, dislike, etc, or email us directly at support@compeletlyprivatefiles.com.