1 00:00:01,000 --> 00:00:01,000 Okay. 2 00:00:01,000 --> 00:00:08,000 So so far we signed up with X NPP, which, like I said, can be more private and more anonymous than 3 00:00:08,000 --> 00:00:10,000 normal messaging services. 4 00:00:11,000 --> 00:00:17,000 We're also using this from Thales, which is live and MiSeq, and comes with the latest patches and 5 00:00:17,000 --> 00:00:19,000 more secure than normal operating systems. 6 00:00:19,000 --> 00:00:27,000 So right now, our method of instant messaging is more private and much more anonymous than normal instant 7 00:00:27,000 --> 00:00:28,000 messengers. 8 00:00:29,000 --> 00:00:31,000 We're also using end to end encryption. 9 00:00:31,000 --> 00:00:38,000 So whenever we send a message, it gets encrypted on our end and never gets decrypted until it reaches 10 00:00:38,000 --> 00:00:39,000 the destination. 11 00:00:39,000 --> 00:00:42,000 So no one can read the content of the message. 12 00:00:42,000 --> 00:00:49,000 Even the server that we are using to facilitate the connection cannot see the messages that we send. 13 00:00:49,000 --> 00:00:50,000 So this is really, really good. 14 00:00:50,000 --> 00:00:57,000 The server servers, you also use TLS, so everything is set up properly so far. 15 00:00:57,000 --> 00:01:04,000 The only problem that we have is you can see here at the bottom it's still telling us that the communication 16 00:01:04,000 --> 00:01:06,000 is unverified. 17 00:01:06,000 --> 00:01:09,000 So it is private, but it's just unverified. 18 00:01:10,000 --> 00:01:16,000 And what's meant by this is right now, we're still not sure that the person on the other end, this 19 00:01:16,000 --> 00:01:19,000 person right here is who they're claiming to be. 20 00:01:20,000 --> 00:01:26,000 What if someone managed to hack into this person's account, or what if someone has managed to impersonate 21 00:01:26,000 --> 00:01:27,000 this account? 22 00:01:27,000 --> 00:01:34,000 So how can we be so sure that the person using this account right here is the person that we want to 23 00:01:34,000 --> 00:01:36,000 communicate with? 24 00:01:36,000 --> 00:01:38,000 So this is what the warning is telling us. 25 00:01:38,000 --> 00:01:41,000 We haven't verified the person on the other end. 26 00:01:41,000 --> 00:01:46,000 And in this lecture, I want to show you a number of methods on how we can do this. 27 00:01:47,000 --> 00:01:52,000 So we're going to click on the notification and we're going to click on Authenticate Body. 28 00:01:54,000 --> 00:02:00,000 And as you can see in here, we have a dropdown menu in which we can select the method that we want 29 00:02:00,000 --> 00:02:04,000 to use in order to verify the person at the other end. 30 00:02:05,000 --> 00:02:08,000 So the first method is very simple question and answer. 31 00:02:08,000 --> 00:02:15,000 And the way this will work is you do want to use a question in here that only the right person can answer. 32 00:02:15,000 --> 00:02:21,000 So you want to make sure that if anybody hacks into their account or impersonates them, they won't 33 00:02:21,000 --> 00:02:24,000 be able to answer the question that you enter in here. 34 00:02:25,000 --> 00:02:29,000 So for example, let's say I want to ask him, where did we meet? 35 00:02:29,000 --> 00:02:34,000 Now, this is obviously a really bad question to ask in terms of privacy, because this will reveal 36 00:02:34,000 --> 00:02:37,000 the location where you met this person. 37 00:02:37,000 --> 00:02:39,000 But just for testing, it's fine. 38 00:02:39,000 --> 00:02:41,000 And you want to put the answer to this question. 39 00:02:41,000 --> 00:02:46,000 So let's say Ireland and we're going to click on Authenticate. 40 00:02:46,000 --> 00:02:52,000 So right now, as you can see, we're waiting for the person to respond to this question. 41 00:02:52,000 --> 00:02:57,000 And if we go to the person's account, as you can see, he got this message telling him that the other 42 00:02:57,000 --> 00:03:00,000 person is trying to authenticate you. 43 00:03:00,000 --> 00:03:02,000 The question is, where did you meet? 44 00:03:02,000 --> 00:03:04,000 And he has to put the answer here. 45 00:03:04,000 --> 00:03:09,000 So if I put the correct answer in here, click on authenticate. 46 00:03:09,000 --> 00:03:16,000 As you can see, it's telling this person that your body has successfully authenticated you and you 47 00:03:16,000 --> 00:03:17,000 may want to authenticate them. 48 00:03:17,000 --> 00:03:23,000 So you may want to use a different method of of authentication to make sure that that person is who 49 00:03:23,000 --> 00:03:24,000 you think they are. 50 00:03:24,000 --> 00:03:31,000 But if we go back here, you can see that it's telling us that the authentication is successful and 51 00:03:31,000 --> 00:03:34,000 the communication right now is private. 52 00:03:34,000 --> 00:03:35,000 The warning is gone. 53 00:03:35,000 --> 00:03:38,000 So right now we're using end to end encryption. 54 00:03:38,000 --> 00:03:42,000 Everything is encrypted on our end and only decrypted at the other end. 55 00:03:42,000 --> 00:03:49,000 We also verified that the person at the other end is the person that we actually want to communicate 56 00:03:49,000 --> 00:03:49,000 with. 57 00:03:50,000 --> 00:03:52,000 We're using XRP to send the messages. 58 00:03:52,000 --> 00:03:59,000 Like I said, this is a decentralized messaging protocol that is not really owned by a single company 59 00:03:59,000 --> 00:04:03,000 and you can even set up your own XRP servers. 60 00:04:03,000 --> 00:04:09,000 So therefore there isn't a single entity that could spy or could see what's happening. 61 00:04:10,000 --> 00:04:11,000 Now. 62 00:04:11,000 --> 00:04:14,000 There are actually other methods to verify the other person. 63 00:04:14,000 --> 00:04:23,000 So if we go here and click on Authenticate Buddy, you can also choose a secret, a shared secret. 64 00:04:23,000 --> 00:04:26,000 So this way you don't ask a question. 65 00:04:26,000 --> 00:04:32,000 You need to have you need to agree with the other person on a secret that you use to authenticate them. 66 00:04:32,000 --> 00:04:35,000 So you would only put the secret in here. 67 00:04:35,000 --> 00:04:37,000 They'll be prompted for the secret as well. 68 00:04:37,000 --> 00:04:42,000 And if you both put the right correct secret, they will be authenticated. 69 00:04:42,000 --> 00:04:48,000 And the last method of authentication, you can use manual fingerprint verification where you will have 70 00:04:48,000 --> 00:04:54,000 to send your fingerprint, which is this one right here, this code to the other person. 71 00:04:54,000 --> 00:04:58,000 But you want to do this using another method of communication. 72 00:04:58,000 --> 00:05:00,000 So you want to either call them or. 73 00:05:00,000 --> 00:05:05,000 Send it to them by email or another secure method of communication. 74 00:05:05,000 --> 00:05:12,000 And then once they get it, go to the authenticate, go on the fingerprints as well, and compare the 75 00:05:12,000 --> 00:05:16,000 fingerprint that you send them to, the fingerprint that they see in here. 76 00:05:17,000 --> 00:05:22,000 Now, as you can see, this method is a little bit more complex and would require more steps. 77 00:05:22,000 --> 00:05:28,000 But the other two methods that I showed you earlier are only available in the recent pidgin versions. 78 00:05:28,000 --> 00:05:33,000 So if your buddy or your friend is using an older version, you might have to use this method. 79 00:05:34,000 --> 00:05:36,000 So that's it for now. 80 00:05:36,000 --> 00:05:43,000 You can go ahead and start communicating with your friends, using pigeon with X and P and otter, and 81 00:05:43,000 --> 00:05:45,000 this way your communication will be private. 82 00:05:45,000 --> 00:05:51,000 You'll be able to authenticate your friend, make sure that the right person, and therefore your communication 83 00:05:51,000 --> 00:05:53,000 will be more anonymous.