GCTMO - Types of Encryption

We use a variety of methods to communicate more securely. The key for your house is not likely the same key as your house, because they don't use the same lock. It is the same for communication, using various types, ways, and types of keys.

We use Email, Audio/Video Calling apps, and Chat apps. Most of these include their own embedded encryption seamlesslessly (which tends to be better), while some of these, like email, use GPG/PGP added-on. For email, the standard is GPG/PGP encryption.

Types of encryption:
1) GPG/PGP - Use GPG4Win/Kleopatra for windows. It is the Primary method used in Email, also used in some chat apps, can be used to securely chat in-line in any app but requires copy/pasting back and forth. GPG/PGP also comes embedded in the Thunderbird email program.
--While mostly used by us for Email encryption and document/file encryption, we also use GPG/PGP for more than just encrypting anddecrypting, we also use it to verify that a file (a GPG/PGP signed file) that we download has not been altered by an attacker.
--Has strong encryption but the keys don't automatically and frequently change, which is not good if your private key gets stolen.
--PGP/GPG keys come in 2 halves - one for signing and decrypting a file or text -this half of the key is private, so you don't give this to anyone. The other half is used for encryption - this one is the public half of the key, so you give this to anyone you want to send you an encrypted file/text. The pubic half of the key is not able to decrypt, it is only able to encrypt.
--We put our GPG/PGP public key at the bottom of this page in the QR code.

2) OMEMO - Built-in to many chat apps. Strong encryption with constantly changing keys. Good if you verify the other person's key. Supports group chats. We use this in a couple of our chat apps.

3) OTR - Use Pidgin on computers- OTR is used in some older Android chat apps, but can also be used to securely chat in any app but requires copy/pasting back and forth or a special addon. Strong encryption with frequently changing keys. Built-in verification of other person's key. No group chats, only 1:1. We do not currently use OTR much but may in the future.

4) Matrix (Riot) - Used in A/V calling & chat apps. Strong encryption with constantly changing keys. It encourages you to verify the other persons key. Supports group chats. We use this in a couple of our A/V calling apps and chat apps.

5) PDF (AES-256) - Modern .pdf programs/apps include a built-in AES 256 bit encryption when you add a password to the .pdf file. This password needs to be very long, random, and highly complex (containing lower and upper-case letters, numbers, and symbols. If it is not long enough and/or not complex enough, it can be cracked by multiple educated guesses. Long length (25+ characters), real randomness (make it yourself, don't use previous passwords or dates of birth, etc), and high-complexity (lower,upper,numbers,symbols) will remedy this.