PGP isn't an end-to-end encryption service; it's a public-key encryption package.
To clarify macintux's statement, you can only guarantee end-to-end encryption will both remain secure and allow your messages to be read if you control both ends. If you do not control the other end, but you give it the ability to decrypt your messages (and thus let them be read), then whoever does control the other end can save the plaintext, post it elsewhere, and generally do whatever they want with it.
To be "end-to-end encrypted", something has to actually be a service you are using, not merely a method of encryption. An end-to-end encrypted service could use PGP if it wanted (AFAIK), but PGP, in itself, is just a way for you to encrypt your messages, and then, optionally, share your public key to allow them to be decrypted by those you give it to, while also guaranteeing that those messages came from you (as long as you have kept your private key safe).
So I'm afraid your question, as it stands, doesn't really make sense, but I hope this has helped to answer the underlying questions for you.
No, his question makes perfect sense and your response doesn't really make any. End-to-end encryption doesn't imply encryption from one end of the universe to the other. It is what it says on the tin: encryption from one end to another. Your message is insecure beyond the the other end.
That is true both for PGP encrypted messages as well as iMessage messages. There's nothing on iPhones or Macs actually protecting your decrypted messages. Most of the on device security is optional and your messages, photos and files can be copied and shared anywhere in plain text.
Is the internet not built on public key encryption between two parties?
How does PGP solve this?
PGP isn't an end-to-end encryption service; it's a public-key encryption package.
To clarify macintux's statement, you can only guarantee end-to-end encryption will both remain secure and allow your messages to be read if you control both ends. If you do not control the other end, but you give it the ability to decrypt your messages (and thus let them be read), then whoever does control the other end can save the plaintext, post it elsewhere, and generally do whatever they want with it.
To be "end-to-end encrypted", something has to actually be a service you are using, not merely a method of encryption. An end-to-end encrypted service could use PGP if it wanted (AFAIK), but PGP, in itself, is just a way for you to encrypt your messages, and then, optionally, share your public key to allow them to be decrypted by those you give it to, while also guaranteeing that those messages came from you (as long as you have kept your private key safe).
So I'm afraid your question, as it stands, doesn't really make sense, but I hope this has helped to answer the underlying questions for you.
No, his question makes perfect sense and your response doesn't really make any. End-to-end encryption doesn't imply encryption from one end of the universe to the other. It is what it says on the tin: encryption from one end to another. Your message is insecure beyond the the other end.
That is true both for PGP encrypted messages as well as iMessage messages. There's nothing on iPhones or Macs actually protecting your decrypted messages. Most of the on device security is optional and your messages, photos and files can be copied and shared anywhere in plain text.
5 replies →