[Cryptography] The Trust Problem

Jerry Leichter leichter at lrw.com
Tue May 20 10:50:23 EDT 2014 

So I ran across the Mustbin iOS app (http://mustbin.com).  Cool, simple idea:  Take pictures of important documents, the contents of your wallet, etc.; organize them in "bins"; upload and sync to all your devices.  The data is encrypted with "military grade security" (they actually specify RSA - no key length mentioned - and AES-256); they don't have access to your decryption keys.    "Our technology has been reviewed and verified by one of the best firms in the security analysis business."  (This is mainly from a blog entry:  http://mustbin.com/blog/read/mustbin-security-military-grade-certified.)

So ... should I believe their stuff is secure?  Let's suppose they really are good guys doing their best to provide a secure service:  What could they do to help me trust them with such sensitive information?

With security, we're now at a level well beyond technical questions about algorithms and key lengths.  What should you demand to be convinced that you can use some software safely?  What should someone offering secure software put out there that would help you reach a decision?

The facile answer is "only use OSS" - like OpenSSL, home of Heartbleed.  :-( (Actually, Mustbin uses OpenSSL - they have another blog entry about what affect Heartbleed had on them.)

Openness is certainly *part of* the answer.  I'd find Mustbin's comments much more convincing it they named that "best firm" *and published their report* so I could judge what was actually examined.  But it's not the whole story.  

Apple's recent white paper on iOS security http://images.apple.com/ipad/business/docs/iOS_Security_Feb14.pdf may not be perfect - what is? - but it's certainly way beyond what you get with most products, which basically say "We're experts, trust us."

                                                        -- Jerry

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4813 bytes
Desc: not available
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20140520/8a900ced/attachment.bin>

More information about the cryptography mailing list