From mboxrd@z Thu Jan  1 00:00:00 1970
From: John Hendy <jw.hendy@gmail.com>
Subject: Re: mobileorg encryption in iOS vs. Android
Date: Mon, 14 Jan 2013 11:42:37 -0600
Message-ID: <CA+M2ft8+Mjx2m6eVsGC9YpfEcoYCaC4oJKpEuAw8EB-ax2w5pg@mail.gmail.com>
References: <CA+M2ft8YxUs1WMYuk3D+Yy7LABW2VnNcrqLzQP1o0uzwKvcpSw@mail.gmail.com>
	<rmi4nij7m0u.fsf@fnord.ir.bbn.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Return-path: <emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org>
Received: from eggs.gnu.org ([208.118.235.92]:39216)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <jw.hendy@gmail.com>) id 1Tuo3Z-0003K9-8m
	for emacs-orgmode@gnu.org; Mon, 14 Jan 2013 12:42:51 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <jw.hendy@gmail.com>) id 1Tuo3S-0006i3-D1
	for emacs-orgmode@gnu.org; Mon, 14 Jan 2013 12:42:45 -0500
Received: from mail-ob0-f173.google.com ([209.85.214.173]:48405)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <jw.hendy@gmail.com>) id 1Tuo3S-0006hx-6b
	for emacs-orgmode@gnu.org; Mon, 14 Jan 2013 12:42:38 -0500
Received: by mail-ob0-f173.google.com with SMTP id xn12so4173185obc.18
	for <emacs-orgmode@gnu.org>; Mon, 14 Jan 2013 09:42:37 -0800 (PST)
In-Reply-To: <rmi4nij7m0u.fsf@fnord.ir.bbn.com>
List-Id: "General discussions about Org-mode." <emacs-orgmode.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/emacs-orgmode>,
	<mailto:emacs-orgmode-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/emacs-orgmode>
List-Post: <mailto:emacs-orgmode@gnu.org>
List-Help: <mailto:emacs-orgmode-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/emacs-orgmode>,
	<mailto:emacs-orgmode-request@gnu.org?subject=subscribe>
Errors-To: emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org
Sender: emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org
To: Greg Troxel <gdt@ir.bbn.com>
Cc: emacs-orgmode <emacs-orgmode@gnu.org>

On Mon, Jan 14, 2013 at 10:43 AM, Greg Troxel <gdt@ir.bbn.com> wrote:
>
> It seems that the android version should act like the ios version and
> just use the symmetric cipher.  Is that hard, or is there some advantage
> to the gpg scheme?   Or perhaps the android-style encryption should be
> supported directly in org?
>

I think it has to do with the method used. org-mobile-use-encryption
uses openssl based encryption. From the APG entry on wikipedia [1]:
----------
The application provides strong, user-based encryption which is
compatible with the Pretty Good Privacy (PGP) and GNU Privacy Guard
(GPG) programs.
----------

When I encrypt with org-mobile-use-encryption, I get an APG popup with
a blank entry field expecting a PGP message, and it features a
"Decrypt" button at the bottom. When using gpg manually, I get a popup
for a symmetric key password.

Does this make sense? If so, this is my reasoning for thinking the
change has to be on the org side. Alternatively, an openssl decryption
method could be integrated into mobileorg Android.

[1] http://en.wikipedia.org/wiki/Android_Privacy_Guard


John