Google researching ways to add PGP encryption to Gmail

In the post-Snowden era the need for consumer level encryption is being seen not only as a necessity but also as a way to attract customers. For maybe the first time non-technical end-users are asking questions about security and it can be a factor in deciding which services users pick. According to people familiar with Google’s plans for its Gmail service, the search giant is looking into ways to add better encryption options to its email service.

The problem with many forms of symmetric encryption is that the service provider has access to the “master key” which allows the messages to be decrypted. Famously Snowden used the Lavabit encrypted email service which was forced to shutdown about a year ago. The service voluntarily ceased operating because the founder was probably being asked by the US government to hand over all of Snowden’s emails along with the necessary keys for decrypting them.

Google has research underway to improve the usability of PGP with Gmail.

There is another type of encryption which is called public key cryptography or asymmetrical encryption which uses two keys, one for encryption and one for decryption. The idea is that the first key (used for encryption) can be published freely and publicly, while the second key (used for decryption) remains secret. This form of encryption is end-to-end in that it is the users who perform the encryption and decryption before the message enters into the email system. The most famous implementation of public key cryptography is Pretty Good Privacy, or PGP for short. It was created by Phil Zimmerman back in the early 1990s and although there are free and open source versions available (most notably GnuPg, or GPG for short), the system has never gained widespread acceptance.

There is also the problem of public key distribution. They can be transmitted in plain text, but the various means of distributing public keys have never gained popularity.

The reason is that in its simplest form an email message needs to be typed up and then the text copied into the PGP/GPG program. The text is then encrypted (using the public key) and then the encrypted version is copied back into the email client and sent to the recipient. At the other end, the recipient copies the encrypted text into PGP/GPG and uses the private key to decrypt the message. This process isn’t streamlined and the extra steps needed to perform the encryption/decryption deter users from adopting the system widely. There are a variety of services, browser extensions and plugins which try to make the processes easier, however their adoption has never reached a critical mass.

There is also the problem of public key distribution. I can easily give someone my email address but for them to send me an encrypted email they need my public key. This can be transmitted in plain text, but the various means of distributing public keys have never gained popularity. One problem is that if I have someone’s email address then I need to get hold of their public key. I can get it by emailing them or by searching on their blog or on social media, but it requires users to make a conscious effort to publish their public keys and for others to find them. A directory of public keys where you can look up keys sounds like a good idea, but there is the problem of misuse and problems with spam etc.

However the negative side for Google is it can't scan encrypted messages in order to display the appropriate adverts.

VentureBeat has published  a quote from a Google employee who has let it slip that Google is researching ways to streamline the use of PGP/GPG with Gmail. Google has “research underway to improve the usability of PGP with Gmail,” said the employee who is familiar with the matter.

If Google develops a way to integrate PGP/GPG with Gmail, where it never has a copy of the private key, then Google won’t be able to decrypt emails for any government agencies as they simply don’t have the key.

However the negative side for Google is it can’t scan encrypted messages in order to display the appropriate adverts. Since Google is probably using user profiles more to display adverts then this might not be an insurmountable problem, however it will be interesting to see what Google can come up with.

previous post

---

Fake antivirus app pulled from Play Store, Google issues refund and an apology

Personalize Your Gmail Interface With Gmelius

If you spend a lot of time in Gmail, composing and replying to emails, you’ve probably started wishing that there were certain things you could change in order to improve your Gmail experience. Maybe you miss the old compose window, or maybe you wish that you didn’t have to look at all those ads, or perhaps you’d like the option of tweaking the interface here and there to suit your needs and tastes. Well, you can stop wishing, because Gmelius is here.

Gmelius is a browser extension that aims to provide a cleaner and smarter Gmail experience. It lets you customize the Gmail interface, showing only the elements you need and hiding the rest. Whether you want to reduce clutter or just want to freshen Gmail up, Gmelius is the extension for you.

Recommended Reading: Get More Control & Functionality On Gmail With MxHero Toolbox

Getting Started With Gmelius

Gmelius is available for Google Chrome, Mozilla Firefox and Opera. All three versions of the extension should work identically; we’ll be taking a look at the Google Chrome version in this post. Note that you can also download the extension from the official website, which should detect the browser you’re using and offer the correct version for download.

Either way, once you’ve installed Gmelius, you should instantly be taken to its configuration screen. No extra logins or anything of the sort to worry about.

Gmelius Features

As you can see from the configuration screen, Gmelius has a lot of features, grouped into separate categories, that will help you get your Gmail interface just right. We don’t have the space to discuss every single feature in depth, so here’s a quick run-through of the more notable features.

All of the options in the Regain some space in Gmail category have to do with removing certain elements of the Gmail interface, freeing up screen real estate for the important things, namely the emails themselves. Amongst the interface elements you can disable include Ads, the People Widget, the footer, all the chat-related elements and the scrollbar.

There are also options that can tweak how the Gmail Header works. You can enable things such as an additional button to hide and show the Gmail header bar, the ability to automatically scroll to the top of your inbox by clicking the topmost light grey bar, as well as hide Google+ Activity.

The Gmail inbox category houses all the features that change the inbox itself. You can enable a subtle row highlight when you mouse over emails, homogenize all incoming emails, add text to and colorize navigation icons as well as restore the old Gmail compose window. Do bear in mind that the old compose window is still in beta, so you may encounter some small bugs here and there.

Finally, Gmelius also has the ability to add attachment icons to your inbox. By default, the Gmail inbox only shows that there’s an attachment with that small paperclip icon, without showing what sort of attachment it is. Enabling this feature changes this paperclip icon to an icon that matches the type of file that’s attached to the email. More than 40 filetypes are currently supported.

Premium Features

Gmelius also includes a few premium features. These features are free to use while the extension is in beta, but expect to have to pay for them once the extension leaves beta.

There are currently two options in the Make Gmail Smarter category. Firstly, you can enable the ability to search Gmail directly from the omnibox or address bar, which is a very handy feature that most will probably find useful. There’s also a feature that that automatically simplifies email addresses, replacing "[at]" and "[dot]" with the more readable "@" and ".", that’s enabled by default.

There’s also a Print cleaner emails option. This option removes the Gmail logo and modifies Gmail’s printing stylesheet to make your printed emails look more professional. The modified stylesheet also lets you include more text in a single page, quite handy for those really long emails. This feature is also enabled by default.

Conclusion

As you can see, Gmelius is a great solution for anyone who’s not entirely thrilled with the Gmail interface and wants to change things up a bit. Between hiding unused interface elements to tweaking the colors and behavior of the Gmail inbox, Gmelius has probably got you covered. Gmelius is currently free, with no charge for the Premium features yet, but you can donate to the developer if you like the extension.

View the Original article

Checker Plus Reads Gmail Messages, Marks as Read from Notifications

Chrome: Google's browser has a pretty nifty notification system. While Gmail can provide some basic notifications through Chrome, Checker Plus lets you automatically read emails out loud, mark them as read from the notification, and more.

The extension has a host of options, including the ability to read your emails out loud to you using text-to-voice software. You can also customize which action buttons the notification shows, including mark as read, delete, archive, star, reply, or a bunch more. The extension can also show you the inbox for every account you're logged into in Chrome, so you don't need to have multiple Gmail tabs open.

Checker Plus | Chrome Web Store via MakeUseOf

View the Original article

''Hidden'' feature: How to display unread emails only on Gmail

Loie Favre (translation) 2014-04-02T17:00:00Z21 hours ago

Loie Favre

Loie Favre is a Canadian-German, food-loving, live-music-craving globe-trotter. Coming from a humble background in the Canadian Prairies centred around nature and the Arts, she studied Translation and Languages in Edmonton. She left his home on the Pacific Coast of Canada, to seek her fortune in Berlin. She is now an Editor and Manager for AndroidPIT.com and is enjoying discovering about everything and anything under the sun about Android.

You really can’t get away from using Gmail on your smartphone or tablet, but that being said, the Gmail for Android app still hasn’t received the optimization that we are used to on the web-based version. There is one option that doesn’t exist on the app, which you can use on your computer, that allows you to post only unread messages at the top of the page. Though this function has yet to arrive to Android, here is a workaround to make this happen anyways.

© Google/AndroidPIT

It’s ridiculously simple:

• Tap the magnifying glass on the top left corner of your screen to launch the search function.
• In the search field text box, enter is:unread in:inbox
• Launch the search and there you go! All the unread messages come up first.

To be able to access this faster the next time, you simply need to open the search again and this time choose is:unread in:inbox from the search history. In worst case scenario (especially if you use the search function a lot), you just need to scroll through to find it.

We admit that this solution could be a bit cumbersome, but it suffices for the time being. But honestly, Google should get on top of adding this function to its app or at least creating an equivalent!

Do you know any other tips and tricks for Gmail?

(originally by Quentin Ducreux)

 Previous

Specs showdown: S5 vs Z2 vs M8 vs Find 7 vs G3

 Next

Amazon launches Amazon Fire TV to compete with Chromecast, Apple TV

View the Original article

Gmail gets further encryption to protect your data from the NSA

Kris Carlon 2014-03-21T08:30:53Z1 day ago

Kris Carlon

Putting down roots in Berlin after six years of traveling is a major step for Kris Carlon, who has spent more time living out of a tent lately than sitting at a desk. Kris comes to the AndroidPIT Editorial Team via a lengthy period spent writing on art and culture in Australia and other places he has lived. He joined the Android community while resurfacing in civilization back in 2010 and has never looked back, using technology to replace his actual presence in other people's lives ever since.

Google has implemented HTTPS encryption across its Gmail service, starting today, in a move blatantly directed at keeping the NSA out of Gmail users' private communications. HTTPS encryption has been standard at Google since 2010, but now Gmail is receiving the same level of security between Google's own data centers.

Google wants your Gmail communications to fly under the NSA radar. / © AndroidPIT/Google

One of the NSA's key strategies was intercepting communications between servers on Google's side of the fence and taking advantage of weaker protection once a message was actually received at Gmail. With this new security measure, Gmail messages, whether sent or received are encrypted all the way, even between Google's servers. This happens regardless of the device you're on or the kind of network you're connected to. As Gmail's Security Engineering Lead, Nicolas Lidzborski, states:

Today's change means that no one can listen in on your messages as they go back and forth between you and Gmail’s servers—no matter if you're using public WiFi or logging in from your computer, phone or tablet. In addition, every single email message you send or receive—100% of them—is encrypted while moving internally. This ensures that your messages are safe not only when they move between you and Gmail's servers, but also as they move between Google's data centers—something we made a top priority after last summer’s revelations.

Are you happy to know Google is taking additional steps? How secure do you think your emails are?

Via: The Verge Source: Gmail Blog

 Previous

Link Bubble is about to revolutionize the way you use mobile internet

 Next

Gear 2 and Gear Fit prices revealed

View the Original article

Gmail is now a little more secure.

Gmail is now a little more secure. HTTPS encryption will be used regardless of which device or network you're using to send messages, and the messages are also encrypted when traveling within Google's data centers. Read more on the Google blog.

View the Original article

‘MarkAsRead for Gmail’ app brings a Read button to Gmail notifications

Right now, if you receive a Gmail notification, you have one of two options: you can either archive it or reply. Wish there were more choices than that? Thanks to a new app appropriately named “MarkAsRead for Gmail” you finally get the option to simply mark the message as read, without having to do anything else.

MarkAsRead works by intercepting Gmail notifications, it then dismisses them and sends a clone to our notification tray that adds a handy “Read” button in between the Archive and Reply options. Although this is a simple app, it’s still a welcome change that we wish Google would bring us directly.

You can grab the app for yourself from Google Play for $1.31. While this is a little hefty of a price to pay for an app that has just one function, remember that you’re not just buying the one feature, but your investing in the developer and the work they’ve put into it. And for what it’s worth, the developer already has more “MarkAsRead” ideas in store for us in the future, such as possibily bringing similar functionality to SMS messages.

What do you think, is getting a “Read” button worth $1.31 in your opinion? Anyone try this yet, if so, does it work for you as it should?

Like this post? Share it!

previous post

Newsbeat app creates a radio show based on your favorite news sites

next post

Samsung Galaxy S5 up for pre-order from AT&T starting tomorrow, US Cellular also confirms its plans

Gmail announces it will only use HTTPS, will also encrypt all messages moving internally on Google’s servers

Taking to the official Google blog, the Gmail team has revealed that it is making a change to the way Gmail works, specifically it will now always utilize an encrypted HTTPS connection when you send or check email. Additionally, Google says that every email message you send or receive will be encrypted while moving internally between Google’s data-centers.

Although HTTPS support has been the default since 2010, up until now you could turn it off if you so choose. So why make these changes? According to Google, the change is designed to protect its users by ensuring that “no one can listen in on your messages as they go back and forth between you and Gmail’s servers.” In other words, Google says it will keep your email away from prying eyes every step of the way, whether you’re on a home network or public Wi-Fi.

How good of a job Google actually does at protecting your emails is probably a matter of debate, especially considering they are currently utilizing 256-bit encryption instead of something like 2048-SSL. Still, it’s nice to see Google making changes to help better keep our data (and emails) secure.

What do you think of the new changes, what else do you think Google should be doing to better protect our private emails and other data?

Like this post? Share it!

previous post

Sprint’s new mobile plan not helping struggling image

next post

Motorola Assist and Motorola Camera updated, bug fixes and a few other changes