SECURE

Choosing secure technology and developing careful practices to defend yourself from surveillance.

Secure your email

Choosing the right email provider is mandatory. Minimun requirements are built-in end-to-end encryption and no-log policy.

Criptext

Criptext is an encrypted email service that guarantees security, privacy and control over all your email communications. Doesn't store any emails in its servers. All your emails are stored on your device alone, which means you're in control of your data at all times.

ProtonMail

All emails are secured automatically with end-to-end encryption. This means even we cannot decrypt and read your emails. As a result, your encrypted emails cannot be shared with third parties.

Tutanota

Automatically encrypts all your data on your device. Your mails as well as your contacts stay private. You can easily communicate with any of your friends end-to-end encrypted. Even subject and attachments as well as all your contacts are encrypted.

Encrypt your messages

Switch to a mobile secure messaging system. Even is true that no system is perfect, those are the best available alternatives or choose yourself from SecureMessagingApps, which is a good, independent source of recommendations for that.

Signal

Signal is made for you. As an Open Source project supported by grants and donations, Signal can put users first. There are no ads, no affiliate marketers, no creepy tracking. Just open technology for a fast, simple, and secure messaging experience. The way it should be.

Wire

All Wire applications across all platforms uniformly use state-of-the-art encryption mechanisms that are recognized as reliable by experts and the community. Text, voice, video and media on Wire are always end-to-end encrypted 1:1 and in groups, so all your conversations are secure and private.

Keybase

Keybase aims to provide public keys that can be trusted without any backchannel communication. If you need someone's public key, you should be able to get it, and know it's the right one, without talking to them in person.

Keep your searches private

Get away from Google to avoid your online searches being tracked and being served with targeted ads.

Duckduckgo

The search engine that doesn't track you. Some of DuckDuckGo's code is free software hosted at GitHub, but the core is proprietary. The company is based in the USA.

StartPage

StartPage, and its sister search engine Ixquick, are the only third-party certified search engines in the world that do not record your IP address or track your searches.

SearX

An open source metasearch engine that gathers results from other search engines while also respecting user privacy. One unique feature is that you can run your own instance.

Password manager and 2FA

Just remember a single password to rule them all.
Whenever possible, use two factor authentication (2FA) to access your online accounts.

KeePass

KeePass is a free open source password manager, which helps you to manage your passwords in a secure way. You can put all your passwords in one database, which is locked with one master key or a key file. So you only have to remember one single master password or select the key file to unlock the whole database.

Authy

Go beyond the password and protect yourself from hackers and account takeovers. It works also offline so you can still access secured websites without internet access on your phone.

Two Factor Auth List

List of websites and whether or not they support 2FA.

Use SSL on your site

Serve your pages securely with an SSL cerificate deployed in minutes.

Let's Encrypt

Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. We give people the digital certificates they need in order to enable HTTPS (SSL/TLS) for websites, for free, in the most user-friendly way we can. We do this because we want to create a more secure and privacy-respecting Web.

Certbot

Certbot is an easy-to-use automatic client that fetches and deploys SSL/TLS certificates for your webserver. Certbot will also work with any other CAs that support the ACME protocol.

Qualys SSL test

This free online service performs a deep analysis of the configuration of any SSL web server on the public Internet.

Other tools

Some other useful tools that respect your privacy.

Standard Notes

AES-256 encryption. No one but you can read your notes. Easy to use apps on Mac, Windows, iOS, Android, and Linux. Automatic sync with no limit on data capacity. Web access. Offline access.

NextCloud

Encrypted cloud storage service. Similar functionally to the widely used Dropbox, with the difference being that Nextcloud is free and open-source, and thereby allowing anyone to install and operate it without charge on a private server, with no limits on storage space or the number of connected clients.

Privatebin

PrivateBin is a minimalist, open source online pastebin where the server has zero knowledge of pasted data. Data is encrypted / decrypted in the browser using 256bit AES in Galois Counter mode.

© ONO sendai 2019