From mboxrd@z Thu Jan 1 00:00:00 1970 From: John Hendy Subject: Re: mobileorg encryption in iOS vs. Android Date: Mon, 14 Jan 2013 11:42:37 -0600 Message-ID: References: Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Return-path: Received: from eggs.gnu.org ([208.118.235.92]:39216) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1Tuo3Z-0003K9-8m for emacs-orgmode@gnu.org; Mon, 14 Jan 2013 12:42:51 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1Tuo3S-0006i3-D1 for emacs-orgmode@gnu.org; Mon, 14 Jan 2013 12:42:45 -0500 Received: from mail-ob0-f173.google.com ([209.85.214.173]:48405) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1Tuo3S-0006hx-6b for emacs-orgmode@gnu.org; Mon, 14 Jan 2013 12:42:38 -0500 Received: by mail-ob0-f173.google.com with SMTP id xn12so4173185obc.18 for ; Mon, 14 Jan 2013 09:42:37 -0800 (PST) In-Reply-To: List-Id: "General discussions about Org-mode." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org Sender: emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org To: Greg Troxel Cc: emacs-orgmode On Mon, Jan 14, 2013 at 10:43 AM, Greg Troxel wrote: > > It seems that the android version should act like the ios version and > just use the symmetric cipher. Is that hard, or is there some advantage > to the gpg scheme? Or perhaps the android-style encryption should be > supported directly in org? > I think it has to do with the method used. org-mobile-use-encryption uses openssl based encryption. From the APG entry on wikipedia [1]: ---------- The application provides strong, user-based encryption which is compatible with the Pretty Good Privacy (PGP) and GNU Privacy Guard (GPG) programs. ---------- When I encrypt with org-mobile-use-encryption, I get an APG popup with a blank entry field expecting a PGP message, and it features a "Decrypt" button at the bottom. When using gpg manually, I get a popup for a symmetric key password. Does this make sense? If so, this is my reasoning for thinking the change has to be on the org side. Alternatively, an openssl decryption method could be integrated into mobileorg Android. [1] http://en.wikipedia.org/wiki/Android_Privacy_Guard John