OpenKeychain
   HOME

TheInfoList



Click Here for Items Related To - OpenKeychain
OR:
OpenKeychain on:   [Wikipedia]   [Google]   [Amazon]

OpenKeychain is a
free and open-source Free and open-source software (FOSS) is a term used to refer to groups of software consisting of both free software and open-source software where anyone is freely licensed to use, copy, study, and change the software in any way, and the source ...
mobile app A mobile application or app is a computer program or software application designed to run on a mobile device such as a phone, tablet, or watch. Mobile applications often stand in contrast to desktop applications which are designed to run on d ...
for the
Android operating system Android is a mobile operating system based on a modified version of the Linux kernel and other open-source software, designed primarily for touchscreen mobile devices such as smartphones and tablets. Android is developed by a consortium of deve ...
that provides strong, user-based encryption which is compatible with the OpenPGP standard. This allows users to
encrypt In cryptography, encryption is the process of encoding information. This process converts the original representation of the information, known as plaintext, into an alternative form known as ciphertext. Ideally, only authorized parties can decip ...
, decrypt,
sign A sign is an object, quality, event, or entity whose presence or occurrence indicates the probable presence or occurrence of something else. A natural sign bears a causal relation to its object—for instance, thunder is a sign of storm, or me ...
, and verify signatures for text, emails, and files. The app allows the user to store the public keys of other users with whom they interact, and to encrypt files such that only a specified user can decrypt them. In the same manner, if a file is received from another user and its public keys are saved, the receiver can verify the authenticity of that file and decrypt it if necessary. As of August 2021, it is no longer actively developed.


K-9 Mail Support

Together with
K-9 Mail K-9 Mail is free and open source email client for Android. It is designed as an alternative to the stock email clients included with the platform; it supports both POP3 and IMAP protocols and supports IMAP IDLE for real-time notifications. The p ...
, it supports end-to-end encrypted emails via the OpenPGP INLINE and PGP/MIME formats. The developers of OpenKeychain and K-9 Mail are trying to change the way user interfaces for
email encryption Email encryption is encryption of email messages to protect the content from being read by entities other than the intended recipients. Email encryption may also include authentication. Email is prone to the disclosure of information. Most emails a ...
are designed. They propose to remove the ability to create encrypted-only emails and hide the case of signed-only emails. Instead, they focus on end-to-end security that provides confidentiality and authenticity by always encrypting and signing emails together.


Reception

OpenKeychain is listed on the official OpenPGP homepage and the well-known developer collective Guardian Project recommends it instead of APG to encrypt emails.
TechRepublic TechRepublic is an online trade publication and social community for IT professionals, providing advice on best practices and tools for the needs of IT decision-makers. It was founded in 1997 in Louisville, Kentucky, by Tom Cottingham and Kim Sp ...
published an article about it and conclude that "OpenKeychain happens to be one of the easiest encryption tools available for Android (that also happens to best follow OpenPGP standards)." The publisher
Heise Heise may refer to: People with the surname * Bob Heise (born 1947), American Major League Baseball player * David R. Heise (born 1937), American sociologist * Geoff Heise, American actor * Georg Arnold Heise (1778–1851), an influential Germa ...
reviewed it in their c't Android magazine 2016 and discussed OpenKeychain's backup mechanism. The academic community uses OpenKeychain for experimental evaluations: It has been used as an example where cryptographic operations could be executed in a
Trusted Execution Environment A trusted execution environment (TEE) is a secure area of a main processor. It guarantees code and data loaded inside to be protected with respect to confidentiality and integrity. Data integrity prevents unauthorized entities from outside the ...
. Furthermore, modern alternatives for
public key fingerprint In public-key cryptography, a public key fingerprint is a short sequence of bytes used to identify a longer public key. Fingerprints are created by applying a cryptographic hash function to a public key. Since fingerprints are shorter than the k ...
s have been implemented by other researchers. In 2016, the German
Federal Office for Information Security The Federal Office for Information Security (german: Bundesamt für Sicherheit in der Informationstechnik, abbreviated as BSI) is the German upper-level federal agency in charge of managing computer and communication security for the German go ...
published a study about OpenPGP on Android and evaluated OpenKeychain's functionality. OpenKeychain has been adapted to work with smartcards and NFC rings resulting in a usability study published on Ubicomp 2017.


Funding

The OpenKeychain developers participated in 3
Google Summer of Code The Google Summer of Code, often abbreviated to GSoC, is an international annual program in which Google awards stipends to contributors who successfully complete a free and open-source software coding project during the summer. , the program is ...
programs with a total of 6 successful students. In 2015, one of the main developers got a one-year funding to improve the OpenPGP support in K-9 Mail paid by the
Open Technology Fund The Open Technology Fund (OTF) is an American nonprofit corporation that aims to support global Internet freedom technologies. Its mission is to "support open technologies and communities that increase free expression, circumvent censorship, and ...
.


History

OpenKeychain has been created as a fork of Android Privacy Guard (APG) in March 2012. Between December 2010 and October 2013 no new version of APG was released. Thus, OpenKeychain has been started with the intention of picking up the development to improve the user interface and API. A first version 2.0 has been released in January 2013. After three years without updates, APG merged back security fixes from OpenKeychain and some months later rebased an entire new version on OpenKeychain’s source code. However, this process stopped in March 2014, while the OpenKeychain developers continued to regularly release new versions. A number of vulnerabilities found by Cure53 have been fixed in OpenKeychain. These are still not fixed in APG since its last release in March 2014. Since K-9 Mail version 5.200, APG is no longer supported as a cryptography provider.


References


External links

*
GitHub repository of OpenKeychain
* * {{F-Droid, org.sufficientlysecure.keychain, OpenKeychain Free and open-source Android software OpenPGP Cryptographic software