Jan 25, 2019, 1:43 PM by 19hundr...@tutanota.com:
>
> I just published R.I.S.K.S. (> https://19hundreds.github.io/risks-workflow
> <https://19hundreds.github.io/risks-workflow>> ). The source repo is >
> https://github.com/19hundreds/risks-workflow
> <https://github.com/19hundreds/risks-workflow>> .
>
>
> I've been searching for a viable system for managing my own secrets since a
> while and I'm still on it.
>
>
> Inspired by Snowden's experience with journalists, projects like Enough (>
> https://enough.community/ <https://enough.community/>> ) and determined to
> contribute the way I can against digital abuses (monitoring, tapping etc.) I
> decided to sum up what I know in a step-by-step guide providing a reasonable
> setup (hopefully) for defending user's secrets.
>
>
> I don't know if many feel the need for such a guide but I crafted it in the
> hope to be helpful to the vast majority of the audience.
>
>
>
>
> I'd greatly appreciate any feedback, comment, critic and advice driven to
> improve R.I.S.K.S.
>
> ---
> 1900
>
>
>
>
It is really interesting collection. Did you consider to:
- use the Hidden Volume function like provided in the Vera Crypt? Today in the
US and GB, and more, you can be forced to unlock any encrypted partition under
the threat to be locked up indefinitely. Plausible deniability of Hidden
Volumes can help here. These risks are today very real.
- use some secure USB key, like Notrokey (I know, issue of trusting the vendor,
but it is similar to an SD card trust). It decreases the need to remember more
passphrases (all of it can theoretically sleep nicely on the secure USB). It
can be used with Heads to provide an interesting protection against Evil Maid.
It also decreases the behind shoulder watching of input of long-strong
passwords in exposed areas. You just use few-char-pass to unlock the HD or log
into the system and more.
- use even the Hidden operating system on the secure USB, like that of Nitrokey
Storage.
Combining the above mentioned with your attitude, could be very interesting.
You maybe considered what I mentioned and didn't opt for it for some reason. If
so, why?
Nice work tbh, good luck!
>
>
>
> --
> You received this message because you are subscribed to the Google Groups
> "qubes-users" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to > qubes-users+unsubscr...@googlegroups.com
> <mailto:qubes-users+unsubscr...@googlegroups.com>> .
> To post to this group, send email to > qubes-users@googlegroups.com
> <mailto:qubes-users@googlegroups.com>> .
> To view this discussion on the web visit >
> https://groups.google.com/d/msgid/qubes-users/LX4F0AN--3-1%40tutanota.com
> <https://groups.google.com/d/msgid/qubes-users/LX4F0AN--3-1%40tutanota.com?utm_medium=email&utm_source=footer>>
> .
> For more options, visit > https://groups.google.com/d/optout
> <https://groups.google.com/d/optout>> .
>
--
You received this message because you are subscribed to the Google Groups
"qubes-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to qubes-users+unsubscr...@googlegroups.com.
To post to this group, send email to qubes-users@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/qubes-users/LY1PT7u--3-1%40tutanota.com.
For more options, visit https://groups.google.com/d/optout.
