dissident

command module

v0.0.0-...-6d05200 Latest Latest Go to latest Published: Jun 30, 2017 License: GPL-3.0 Imports: 10 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kevingong2013/dissident

Links

Open Source Insights

README ¶

This project is in beta and unstable. It should not yet be used seriously.

Dissident (beta)

An encryption program that prioritises deniability.

Plausible deniability is defined as a condition in which a subject can safely and believably deny knowledge of any particular truth that may exist so as to shield the subject from any responsibility associated with the knowledge of such truth.

We think that's a beautiful idea, and so, that is what Dissident gives you.

What it does

Dissident hides the length, content, and existence of data...

To achieve this, Dissident stores data in fixed-sized entries, each indifferentiable from any other. You are able to generate and add as many random entries as you like, and so---since no one would ever know if you did---you can claim that any data that is in the database is composed of decoys.

All data can be decoys, so an adversary cannot be sure that there is any real data.

...even if the master password is breached.

An attacker would also need access to the secure identifier for the ciphertext that they want.

Both the master password together with the identifier are needed to locate the correct ciphertext amongst the entries and also to derive the encryption key to unlock the data.

And of course: deniable encryption.

You are able to use any master password for an entry, and under each master password you can store as many ciphertexts as you'd like.

So if you pick a second decoy master password and store a bunch of legitimate-looking entries under it, then---if you are ever forced to disclose your keys---you can give up this decoy master password and its identifiers. The rest of the data in the database is simply composed of random decoys added by Dissident. (*wink wink*)

The complete protocol can be found here.

Installation

Simply run:

$ go get github.com/awnumar/dissident

This will fetch, compile, and install Dissident automatically. If you have $GOPATH in your PATH, you should be able to run it with a simple:

$ dissident

Responsible disclosure

If you are aware of a security bug, notifying us privately is in the interest of all users. We can then discuss it post-mortem.

To do this, please send a PGP encrypted message to my email. My PGP public-key is available on my keybase.

To import it directly into GPG, run:

$ curl https://keybase.io/awn/pgp_keys.asc | gpg --import

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

dissident.go

Directories ¶

Path	Synopsis
coffer
crypto
data
stdin

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL