DBabble Encryption
There are two types of encryption in DBabble.
- Server to client encryption
This is where all communication between you and the DBabble server is encrypted so that no body else on the network or internet can see what you are sending and receiving from the server. In the web browser this is on if the address starts with https:// rather than http://. In the Windows client Help-About box it will say whether or not you are using encrypted communication and you can switch it on or off from the Configure button in the login window.
- Client to client encryption
This is where instant messages or chat room messages you send are encrypted so that not even the server administrator or anyone who gains access to the server can view the contents of them. Additionally, if anyone correctly guesses your login password, they will still not be able to read your messages. It also allows digitally signing your messages so that the recipient knows the message really came from you. This form of encryption is only available if you are using the Windows client. The remainder of the information on this page refers to this type of encryption.
-
Advantages of using public key encryption
-
Disadvantages of using public key encryption
-
How to start using encryption
-
Advanced notes on encryption in DBabble
-
How does public key encryption work?
Advantages of using public key encryption
If someone else guesses your password, you don't trust the system administrator or someone you don't trust gains access to the DBabble server then they could read your messages and send messages to other users pretending to be you. Using encryption prevents these security problems.
Disadvantages of using public key encryption
-
If you use the web browser interface, then you will not be able to read encrypted messages sent to you
-
If you loose your private key stored on your hard disk drive (e.g. due to a computer failure) and you have not backed it up then you will never be able to see the contents of your old encrypted instant messages
-
If you want to connect from a different machine you must copy your private key to the new machine before you will be able to read your messages
-
Messages will be larger in size which will mean it will be slightly slower sending and receiving messages
How to start using encryption
To start using encryption, go to the preferences window (Edit-Preferences) and choose the encryption section. Click on the 'Create private key' button. You are now ready to send and receive encrypted messages. Keep in mind that you can't send encrypted messages to other users unless they have created their own private key too.
Advanced notes on encryption in DBabble
-
When DBabble generates you a private key, a corresponding self-signed certificate is generated and submitted to the server
-
When sending a message, it is encrypted so that both you and the recipient can decrypt it. This allows you to view your sent message at a later date
-
When sending a message to multiple recipients, if one or more recipients do not use encryption, then the message will not be encrypted at all. (there would be no point encrypting it to some recipients if un-encrypted copies are also available). There is a preference to warn you when sending messages if it will not be encrypted.
How does public key encryption work?
When each user chooses to use public key encryption, a private key and public key pair are created. You keep your private key secure so that no one else may see it and make your matching public key available to anyone who wants to send you a message. When someone wants to send you a message, they look up your public key and encrypt your message. Public key encryption has the special property that anyone can encrypt a message using your public key, but decrypting the message can only be done using your matching private key. Digital signing of messages works in a similar way, where only you can sign (encrypt) your message, but anyone can verify (decrypt) the message and can be sure it was you who originally created the message.