1
00:00:00,830 --> 00:00:08,580
OK so now that we know how to create an ex MPP account configure pigeon to sign into this account are

2
00:00:08,600 --> 00:00:11,280
the user and communicate with friends.

3
00:00:11,520 --> 00:00:18,510
In this lecture I want to show you how to improve the privacy and anonymity of this method of communication

4
00:00:18,630 --> 00:00:22,990
of X MPP using a plugin called T R.

5
00:00:23,580 --> 00:00:28,610
So as you can see right now when we're sending messages you can see in here at the bottom right.

6
00:00:28,800 --> 00:00:33,520
It's saying that our communication is not private.

7
00:00:33,570 --> 00:00:36,900
To understand why our communication is not private.

8
00:00:36,900 --> 00:00:41,580
Let's have a closer look on what happens when you send a message.

9
00:00:41,580 --> 00:00:48,960
So we have David and John here that want to communicate their they're using an ex MPP server to communicate.

10
00:00:48,960 --> 00:00:50,770
It doesn't matter what server they use.

11
00:00:50,760 --> 00:00:54,300
Like I said they could be using two different servers.

12
00:00:54,300 --> 00:00:57,430
So David has a message that is a secret message.

13
00:00:57,510 --> 00:01:01,200
He sends it to the ex MPP server that he uses.

14
00:01:01,200 --> 00:01:07,730
And then this server might relay two other servers or directly send it to John.

15
00:01:07,880 --> 00:01:11,290
Then John can open the message and read it now.

16
00:01:11,330 --> 00:01:16,900
Pretty much all of the servers and the list I gave you in the previous lecture support the allies.

17
00:01:16,970 --> 00:01:22,760
And if you choose a grade a server then that means they're using the latest and greatest specifications

18
00:01:22,760 --> 00:01:23,860
40 or less.

19
00:01:23,930 --> 00:01:31,610
So that means the communication between you between the clients and the server are encrypted and hence

20
00:01:31,640 --> 00:01:32,960
the red lines in here.

21
00:01:32,990 --> 00:01:36,110
That means all of this communication is encrypted.

22
00:01:36,230 --> 00:01:43,070
And if anybody manages to intercept this connection here or here they will not be able to read the message

23
00:01:43,250 --> 00:01:45,320
because the message will be encrypted.

24
00:01:45,350 --> 00:01:47,360
It will be gibberish.

25
00:01:47,360 --> 00:01:54,970
The only problem is listen to what I said I said the communication between you and the server is encrypted.

26
00:01:55,010 --> 00:02:01,310
So what that means is it means you will be able to read the message the server will be able to read

27
00:02:01,310 --> 00:02:05,180
the message and the receiver will read the message.

28
00:02:05,180 --> 00:02:08,630
Now it's find that you and the receiver can read the message.

29
00:02:08,630 --> 00:02:15,470
The only problem is the fact that the server can read the message because the communication between

30
00:02:15,470 --> 00:02:17,310
you and the server is encrypted.

31
00:02:17,390 --> 00:02:22,970
But once the message is delivered to the server the server will be able to read it.

32
00:02:23,150 --> 00:02:28,400
Now like I said you want to make sure you use a server that you trust and read about the reviews and

33
00:02:28,400 --> 00:02:30,320
read about their privacy policy.

34
00:02:30,380 --> 00:02:35,300
And even if the server is great and will not share anything that you do and will not log anything that

35
00:02:35,300 --> 00:02:39,520
you do it's still not great that servers can read what we type.

36
00:02:39,530 --> 00:02:41,960
It's not very private.

37
00:02:42,050 --> 00:02:48,960
Therefore the solution to this is to use a plugin called OCR which is short for off the record.

38
00:02:49,010 --> 00:02:56,870
And the idea behind this plugin is to make this communication as close as possible to an off the record

39
00:02:56,870 --> 00:03:00,700
private communication that you can have with a friend.

40
00:03:00,770 --> 00:03:06,200
So whenever you're talking to someone about something privately and you don't write anything about it.

41
00:03:06,200 --> 00:03:11,990
So it provides end to end encryption that provides authentication so we'll be able to verify the person

42
00:03:11,990 --> 00:03:13,090
we're talking to.

43
00:03:13,160 --> 00:03:18,200
It provides perfect forward secrecy and deniability.

44
00:03:18,200 --> 00:03:21,660
Now the way this works is so let's go back to our diagram.

45
00:03:21,740 --> 00:03:27,430
We have David who wants to send a message over an ex MPP server that is using TALF.

46
00:03:27,430 --> 00:03:32,490
So as you can see we have red lines here indicating that the communication is private.

47
00:03:32,600 --> 00:03:40,300
But what happens is before sending this secret message David is going to encrypt the secret message.

48
00:03:40,460 --> 00:03:42,560
So the message will become gibberish.

49
00:03:42,560 --> 00:03:50,520
And then and only then he will forward it to the ex MPP server this means that the message that the

50
00:03:50,520 --> 00:03:52,960
server will receive will be gibberish.

51
00:03:52,980 --> 00:03:55,020
It will not be readable.

52
00:03:55,590 --> 00:04:00,390
Then the server will relay this message to John when John opens this message.

53
00:04:00,390 --> 00:04:08,420
It's still gibberish and he will have to use a key to decrypted and read the content of the message.

54
00:04:08,430 --> 00:04:15,000
This way the only two entities that are able to read the content of the message are David and John the

55
00:04:15,000 --> 00:04:16,920
sender and the receiver.

56
00:04:16,920 --> 00:04:23,490
And even though the MPP server will read the message the content of the message will be gibberish because

57
00:04:23,580 --> 00:04:27,410
it got encrypted by David before sending it.

58
00:04:27,600 --> 00:04:33,630
Not only that anyone that intercepts the communication in here they will have to bypass two layers of

59
00:04:33,630 --> 00:04:34,530
protection now.

60
00:04:34,650 --> 00:04:41,510
They'll have to bypass TR less and the encryption implemented by the OCR plugin.

61
00:04:41,780 --> 00:04:47,860
So let's go ahead and see how we can configure this with pigeon so that we can encrypt our messages

62
00:04:48,010 --> 00:04:55,780
and send them privately so right here I'm already logged in to the account that we created previously.

63
00:04:55,780 --> 00:05:05,480
And before I sent any further on private messages I'm gonna go to Tools plugins and I'm gonna look for

64
00:05:05,550 --> 00:05:08,120
OCR or off the record.

65
00:05:08,120 --> 00:05:09,460
We have it right here.

66
00:05:09,470 --> 00:05:12,090
And as you can see it's enabled by default.

67
00:05:12,200 --> 00:05:17,900
And I'm going to click on configure to configure this plugin and what I want to do right now is make

68
00:05:17,900 --> 00:05:19,820
sure that it is enabled.

69
00:05:19,820 --> 00:05:25,790
I want to make sure that automatically initiate private messaging and require private messaging are

70
00:05:25,790 --> 00:05:33,200
ticked so that even if I try to send any messages unencrypted in the future pigeon will refuse that.

71
00:05:33,200 --> 00:05:36,990
So I'll have to always use encryption that's done now.

72
00:05:37,010 --> 00:05:44,150
I'm going to close this and now when we come here when we come to a conversation so let's close this

73
00:05:44,510 --> 00:05:46,990
and just show you the steps from the start.

74
00:05:47,000 --> 00:05:51,550
So you'll double click because you want to talk to your friend and again before you do anything.

75
00:05:51,560 --> 00:05:55,050
As you can see it's seen the communication is not private.

76
00:05:55,220 --> 00:05:57,800
So you can either click on this.

77
00:05:57,800 --> 00:06:02,140
You can click on the OCR in here or on this icon.

78
00:06:02,300 --> 00:06:09,290
So I'm going to click on this and we're going to select start private conversation to enable O.T. are

79
00:06:09,290 --> 00:06:14,510
off the record and start communicating with my friend privately.

80
00:06:14,510 --> 00:06:18,530
So as you can see it's telling us that it's generating a private key for me.

81
00:06:18,890 --> 00:06:19,630
And it's done.

82
00:06:19,670 --> 00:06:20,660
So I'm going to click on.

83
00:06:20,660 --> 00:06:21,730
Okay.

84
00:06:21,860 --> 00:06:24,110
And right now if I send a message.

85
00:06:24,110 --> 00:06:34,340
So let's say this is a test and send it if we go here as you can see this is the friend that I sent

86
00:06:34,340 --> 00:06:35,450
the message to.

87
00:06:35,450 --> 00:06:41,370
He automatically got a private key as well because I requested to initiate a private conversation.

88
00:06:41,450 --> 00:06:45,530
And as you can see automatically for him it's saying it's unverified.

89
00:06:45,530 --> 00:06:48,500
So changed from private to unverified.

90
00:06:48,500 --> 00:06:51,180
We'll talk about what the unverified means later.

91
00:06:51,290 --> 00:06:57,920
But basically this means that the communication between us now is encrypted and as you can see we get

92
00:06:57,920 --> 00:06:58,850
the message.

93
00:06:58,850 --> 00:07:07,190
So now if I say hello back and go to the other person as you can see we received it right here.

94
00:07:07,190 --> 00:07:13,910
And basically this means that any message I sent from here or from the other account is always encrypted

95
00:07:14,030 --> 00:07:19,210
at my end and on the decrypted at the end at the destination.

96
00:07:19,220 --> 00:07:24,200
So even the server will not be able to read the contents.

97
00:07:24,200 --> 00:07:25,960
So that's it for this lecture.

98
00:07:25,970 --> 00:07:32,420
Now our communication is private as you can see we still have one more notification in here saying that

99
00:07:32,420 --> 00:07:34,730
our communication is unverified.

100
00:07:34,760 --> 00:07:36,960
So we bypass the private problem now.

101
00:07:37,040 --> 00:07:39,650
Our communication is unverified.

102
00:07:39,650 --> 00:07:43,880
I will talk about what that means and how to fix this in the next lecture.