03 November 2017

MessageLock Development is Ending.

MessageLock is an email encryption add-in for Microsoft Outlook . It is the product that launched our company over a decade ago. So it's with some sadness that we announce that we have decided to stop development on MessageLock, and that we will be ending support after 2018.

If you are still using MessageLock, we encourage you to consider moving to the free Lockbin add-in for Outlook. Lockbin makes it easy to communicate securely with anyone.  You can get a free Lockbin account now and decide later if the additional premium services are worth a $4.95/mo subscription.

You can download the free Lockbin add-in for Outlook directly from https://lockbin.com

Why are we ending MessageLock development?
When it was launched 12 years ago, MessageLock made email encryption easier for thousands of Microsoft Outlook users.

Demand for MessageLock has not kept pace with other products that we offer, including an Outlook add-in for OpenPGP, Lockbin, and PDF Postman.  The frequency of Microsoft Office updates have made it impractical to continue supporting MessageLock, given the demand.

Will MessageLock stop working?
No, your copy of MessageLock will continue to work, but it will not be supported on upcoming versions of Microsoft Office Outlook

Is Lockbin.com the only option?
While Lockbin is a great option for communicating securely and has an excellent add-in for Outlook, at a customer's request, we will gladly transfer MessageLock licenses to our other products at no charge, including:

Encryptomatic OpenPGP add-in for Outlook:  www.encryptomatic.com/openpgp

PDF Postman add-in for Outlook: www.encryptomatic.com/pdfpostman

If you have you any questions or suggestions for how we can make your transition from MessageLock easier, please contact us.

24 January 2017

Understanding OpenPGP Public and Private Keys

Email encryption has never been easy. The complexity of encrypting emails has frustrated the adoption of the PGP protocol in the decades since Phil Zimmermann released it to the world.

PGP doesn't work the way most people conceptualize encryption, and has been difficult for most to grasp.  It's easy to fall back on the metaphor of a safe with a single combination that both locks and opens the safe.   It's easy to think of knocking on a door, and someone asks "What's the password." If the password is correct, passage is granted.

If someone steals your password, then they can get into your stuff.  A password that both opens and locks something is called a symmetric key password.  If this password is weak and easily guessed, or if someone you have entrusted the password to isn't careful with it, then you have been defeated.  

Open PGP works differently from symmetric key passwords.  Open PGP is asymmetric.

There are two keys in PGP (actually, there can be subkeys, but lets not go there right now).   One key is public and can be known to the world.  The other key is private, and must be kept secure.

If you were going to send me a PGP encrypted email message, you would need to know my public key. You can use my public key to encrypt files and messages that you want me to see. My public is not a secret. 

In fact, here is my public key.  You can know it.  I have published it to a well known key server so you don't have to keep asking me for my public key.  If you want to send me a secure message, you can use my public key.  My public key is not a secret.

If I want to open the encrypted message that you send me (the message you encrypted with my public key), I have to use my private key.  Only my private key can open a message that has been encrypted using my public key.

That is the beauty of Open PGP.  Public keys can be shared openly. We don't have to worry that someone will overhear me sharing my public key with you.

It's like a safe with multiple combinations.   One combination was published in the newspaper, and lets anyone open a door on the safe and put something in. The other combination is a secret and only lets me take something out of the safe.

How can private key unlock something encrypted with a public key?

Oh, so you're a math enthusiast?  For open PGP to work, you really only need to accept the idea that the keys are mathematically related.  You don't have to understand the math, but you should feel comfortable enough to trust it.  It involves working with very large prime numbers.  But if you're interested in elliptical curve cryptography, you read more about it here.

Why don't more people use Open PGP?

Most people don't send encrypted messages because they don't have anyone who wants to receive an an encrypted message.  Message encryption works best when it happens automatically, behind the scenes.  Unfortunately, until recently many large companies that provided communication platforms did not take protecting your messages very seriously.  There is no email encryption option in Gmail or Yahoo mail.  It's difficult enough just to setup an email client like Microsoft Outlook or Thunderbird.  Then, installing the special software to add email encryption is another level of complexity. Then, generating a PGP key pair (public/private) and sharing the public key.... well, you get the idea.

First people need to be convinced that there is a benefit to complexity.  It's easy to convince ourselves that we, "have nothing to hide," and that nobody would be interested in our email anyway.

An easy way to begin to dabble in encryption is to install and use Signal by Open Whisper Systems. It's free and easy to use. Signal is the best implementation for IM encryption that I have seen.

If you are a Microsoft Outlook user, you're welcome to use Encryptomatic Open PGP add-in. We've tried hard to make it easy to install and use, and it's free for personal use.

Thunderbird with the Enigmail add-in is an excellent choice.

Encryptomatic also operates Lockbin.com.  Lockbin lets you send messages to anyone by email, securely, and puts a buffer between you and the technology.

We hope these tools will help you take back your privacy and allow you to communicate confidently.

04 January 2017

PstViewer Lite Now Free for Personal Use

Are you looking for a free email viewer? We invite you to try PstViewer Lite. This Windows software app opens Outlook .pst, .ost, .msg and .eml email files, and is now 100% free for personal use.

If you are a home/student/personal user who wants to access old emails, or if you have an email you want to save as a pdf file, you can now get a free license of PstViewer Lite, previously priced at $29.99.

Unlike other free .pst viewers, PstViewer Lite has no adware/spyware/malware. It's the same product sold commercially by Encryptomatic LLC for five years.

Why are we doing this? We've been dismayed with the recent rash of very poor "free" email viewing software. Some of this software scans your Pst files and then reports "corruption," offering to fix it if you purchase another product. We think that's wrong.

We hope you enjoy PstViewer Lite. Feel free to contact our support team with any questions or bug reports.

PstViewer Lite is still sold, supported and licensed for enterprise and business use.