Hacker News with Generative AI: Encryption

Gmail will soon stop support for the 3DES encryption cipher for incoming SMTP (googleblog.com)
Starting May 30, 2025, we will no longer support the Triple Data Encryption Standard (3DES) for incoming SMTP connections.

Security, Email, Encryption, Google

48 points by gnabgib 1 day ago | 55 comments

When encryption works perfectly and still fails (digitalseams.com)
Encryption underpins the security of every software system with more than one user. Modern cryptography enables us to send and receive messages over the literal air, processed by who-knows-how-many-people’s hardware, with confidence that no one can listen in or tamper with those messages.

Encryption, Cybersecurity, Security, Software

5 points by bobbiechen 4 days ago | 1 comments

Windows 11 users losing data due to Microsoft's forced BitLocker encryption (neowin.net)
Microsoft now automatically enables BitLocker during onboarding when signing into a Microsoft Account.

Windows 11, Security, Microsoft, Data Loss, Encryption

24 points by josephcsible 7 days ago | 25 comments

Indian court orders blocking of Proton Mail (techcrunch.com)
A court in India has ordered the blocking of encrypted email provider Proton Mail across the country.

India, Encryption, Email, Law, Proton Mail

420 points by impish9208 10 days ago | 226 comments

What the heck is AEAD again? (ochagavia.nl)
Here’s a problem you might be familiar with: I keep forgetting what AEAD exactly means and why you would ever use it. Yes, I know the acronym stands for “Authenticated Encryption with Associated Data”, but does that really clarify anything? Not to me, so I’ve finally decided to sit down and write this blog post as a piece of help for my future self… and for anyone else who finds AEAD hard to retain.

Cryptography, Security, Encryption

52 points by wofo 10 days ago | 64 comments

'Fighting crime blindfolded': Europe is coming after encryption (politico.eu)

Encryption, Privacy, Europe, Crime, Law Enforcement

17 points by c420 15 days ago | 6 comments

xPal Encyrpted Messenger Security (furry.engineer)

Security, Messaging, Encryption

18 points by luu 16 days ago | 4 comments

How encryption for Cinema Movies works (serverless.industries)
The Cinema Industry is using its own standards for creating and distributing movies in a secure way. The DCI (Digital Cinema Initiatives) specification defines everything from file formats and encryption to the projection systems itself.

Cinema, Encryption, Security

230 points by perryflynn 19 days ago | 120 comments

Florida's New Social Media Bill Demands an Encryption Backdoor (techdirt.com)
At least Florida’s SB 868/HB 743, “Social Media Use By Minors” bill isn’t beating around the bush when it states that it would require “social media platforms to provide a mechanism to decrypt end-to-end encryption when law enforcement obtains a subpoena.”

Florida, Social Media, Encryption, Law Enforcement, Legislation

11 points by latexr 21 days ago | 0 comments

Encryption Is Not a Crime (privacyguides.org)
Contrary to what some policymakers seem to believe, whether naively or maliciously, encryption is not a crime. Anyone asserting encryption is a tool for crime is either painfully misinformed or is attempting to manipulate legislators to gain oppressive power over the people.

Privacy, Security, Encryption, Government Regulation

211 points by freddyym 22 days ago | 211 comments

AES and ChaCha (phase.dev)
A technical deep dive into how the ChaCha20 cipher is taking on AES as the gold standard for symmetric encryption, and a lesson about the power of simplicity in cryptographic design.

Cryptography, Security, Encryption, Computer Science

40 points by nimishk 25 days ago | 10 comments

DragonFlyBSD Lands "Next-Gen" Disk Encryption Code (phoronix.com)
It's been a while since having any exciting feature development to talk about with DragonFlyBSD but merged this past week was dm_target_crypt_ng, a next-generation implementation of their DM-crypt code for disk encryption.

Operating Systems, Security, Encryption, DragonFlyBSD

19 points by mikece 26 days ago | 1 comments

Florida's New Social Media Bill Explicitly Demands an Encryption Backdoor (eff.org)
At least Florida’s SB 868/HB 743, “Social Media Use By Minors” bill isn’t beating around the bush when it states that it would require “social media platforms to provide a mechanism to decrypt end-to-end encryption when law enforcement obtains a subpoena.”

Privacy, Legislation, Encryption, Social Media, Florida

32 points by hn_acker 27 days ago | 3 comments

Apple has won legal battle in UK to disclose backdoor publicly (theverge.com)
Apple has won its first legal battle over the UK’s demand for a backdoor to encrypted data: the right to tell everyone it’s happening.

Apple, Encryption, Law, UK, Privacy

12 points by commandersaki 30 days ago | 1 comments

WhatsApp MCP Exploited (invariantlabs.ai)
This blog post demonstrates how an untrusted MCP server can attack and exfiltrate data from an agentic system that is also connected to a trusted WhatsApp MCP instance, side-stepping WhatsApp's encryption and security measures.

Cybersecurity, WhatsApp, Encryption

25 points by typeofhuman 31 days ago | 1 comments

Gmail E2E is as terrible as expected (sapka.pl)
Google announced that end-to-end encryption would be coming to Gmail.

Google, Email, Privacy, Encryption

186 points by HypnoticOcelot 33 days ago | 66 comments

Google unveils end-to-end messages for Gmail. Only thing is: It's not true E2EE (arstechnica.com)
When Google announced Tuesday that end-to-end encrypted messages were coming to Gmail for business users, some people balked, noting it wasn’t true E2EE as the term is known in privacy and security circles. Others wondered precisely how it works under the hood.

Gmail, Security, Privacy, Encryption, Business

10 points by HypnoticOcelot 35 days ago | 5 comments

European Commission pushes for encryption 'backdoors' (brusselssignal.eu)
The European Commission has announced new plans for extending the powers of European Union security agencies and expanding Europol into “a truly operational police agency”.

Encryption, Privacy, Law Enforcement, Europe, Security

6 points by nickslaughter02 36 days ago | 1 comments

European Commission takes aim at end-to-end encryption (therecord.media)
The European Commission announced on Tuesday its intention to join the ongoing debate about lawful access to data and end-to-end encryption while unveiling a new internal security strategy aimed to address ongoing threats.

Privacy, Security, Government Regulation, Encryption, Europe

11 points by janandonly 36 days ago | 1 comments

Gmail Users Can Send Encrypted Email to Anyone (forbes.com)
Gmail gets EE2E as it turns 21.

Email, Encryption, Security, Gmail

8 points by taubek 37 days ago | 2 comments

Gmail is making it easier for businesses to send encrypted emails (theverge.com)
Google is updating Gmail to allow enterprise users to send encrypted messages to any inbox in just a few clicks.

Gmail, Email Security, Business, Encryption

5 points by speckx 38 days ago | 0 comments

Fix U.S. National Security (github.com/signalapp)
This pull request introduces a COMSEC (communications security) advisory banner to chat threads, reminding specific pool of users that Signal—despite its robust encryption—is not an appropriate venue for discussing classified information, coordinating military operations, or engaging in off-the-books foreign policy.

National Security, Encryption, Messaging, Security

30 points by Y-bar 38 days ago | 2 comments

Trump calls Signal chat fallout a 'witch hunt',says 'app could be defective' (apnews.com)
President Donald Trump downplayed the Signal chat leak Wednesday as a “witch hunt” and said, without evidence, that the encrypted messaging app “could be defective” as his administration struggles to stem the fallout.

Politics, Social Media, Messaging Apps, Encryption

14 points by croes 42 days ago | 7 comments

Secure encryption and online anonymity are now at risk in Switzerland (techradar.com)

Privacy, Security, Switzerland, Encryption, Anonymity

11 points by 01-_- 42 days ago | 3 comments

CIA Director Reveals Signal Comes Installed on Agency Computers (theintercept.com)
For years, U.S. officials villainized end-to-end encrypted messaging apps like Signal as the domain of criminals and terrorists and a threat to national security.

National Security, Government Surveillance, Cybersecurity, Messaging Apps, Encryption

117 points by jbegley 44 days ago | 99 comments

NSA warned of vulnerabilities in Signal app a month before Houthi strike chat (cbsnews.com)
The National Security Agency sent out an operational security special bulletin to its employees in February 2025 warning them of vulnerabilities in using the encrypted messaging application Signal, according to internal NSA documents obtained by CBS News.

National Security, Cybersecurity, Encryption, Messaging Apps, Government

27 points by jasoncartwright 45 days ago | 5 comments

The Practical Limitations of End-to-End Encryption (soatok.blog)
Internet discussions about end-to-end encryption are plagued by misunderstandings, misinformation, and some people totally missing the point.

Security, Privacy, Encryption, Technology

44 points by todsacerdoti 45 days ago | 45 comments

More Countries Are Demanding Back-Doors to Encrypted Apps (schneier.com)
Last month I wrote about the UK forcing Apple to break its Advanced Data Protection encryption in iCloud. More recently, both Sweden and France are contemplating mandating back doors. Both initiatives are attempting to scare people into supporting back doors, which are—of course—are terrible idea.

Privacy, Cybersecurity, Encryption, Government Surveillance

8 points by Sami_Lehtinen 46 days ago | 0 comments

Chunking Attacks on Tarsnap (and Others) (daemonology.net)
Ten years ago I wrote that it would require someone smarter than me to extract information from the way that Tarsnap splits data into chunks.

Security, Encryption, Cloud Storage, Data Security

10 points by todsacerdoti 48 days ago | 1 comments

France rejects backdoor mandate (eff.org)
In a moment of clarity after initially moving forward a deeply flawed piece of legislation, the French National Assembly has done the right thing: it rejected a dangerous proposal that would have gutted end-to-end encryption in the name of fighting drug trafficking.

Privacy, Encryption, France, Law, Government

1043 points by hn_acker 49 days ago | 301 comments