From mboxrd@z Thu Jan  1 00:00:00 1970
From: Carsten Dominik <dominik@science.uva.nl>
Subject: Re: Feature request: Selective encryption
Date: Sat, 1 Sep 2007 12:29:49 +0200
Message-ID: <d530ab845d79bfc0ea0e9298f6057ba6@science.uva.nl>
References: <m2veaws8jk.fsf@newartisans.com>
	<f1d16773688c3f70ccb93211e8d0051a@science.uva.nl>
	<m2bqcna4hf.fsf@newartisans.com>
Mime-Version: 1.0 (Apple Message framework v624)
Content-Type: text/plain; charset=US-ASCII; format=flowed
Content-Transfer-Encoding: 7bit
Return-path: <emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org>
Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1IRQFf-0005BZ-0h
	for emacs-orgmode@gnu.org; Sat, 01 Sep 2007 06:30:51 -0400
Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43)
	id 1IRQFc-0005AD-EL
	for emacs-orgmode@gnu.org; Sat, 01 Sep 2007 06:30:49 -0400
Received: from [199.232.76.173] (helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1IRQFc-0005A7-5Y
	for emacs-orgmode@gnu.org; Sat, 01 Sep 2007 06:30:48 -0400
Received: from korteweg.uva.nl ([146.50.98.70])
	by monty-python.gnu.org with esmtp (Exim 4.60)
	(envelope-from <dominik@science.uva.nl>) id 1IRQFb-0002jh-PJ
	for emacs-orgmode@gnu.org; Sat, 01 Sep 2007 06:30:48 -0400
In-Reply-To: <m2bqcna4hf.fsf@newartisans.com>
List-Id: "General discussions about Org-mode." <emacs-orgmode.gnu.org>
List-Unsubscribe: <http://lists.gnu.org/mailman/listinfo/emacs-orgmode>,
	<mailto:emacs-orgmode-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/emacs-orgmode>
List-Post: <mailto:emacs-orgmode@gnu.org>
List-Help: <mailto:emacs-orgmode-request@gnu.org?subject=help>
List-Subscribe: <http://lists.gnu.org/mailman/listinfo/emacs-orgmode>,
	<mailto:emacs-orgmode-request@gnu.org?subject=subscribe>
Sender: emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org
Errors-To: emacs-orgmode-bounces+geo-emacs-orgmode=m.gmane.org@gnu.org
To: John Wiegley <johnw@newartisans.com>
Cc: emacs-orgmode@gnu.org


On Aug 31, 2007, at 21:28, John Wiegley wrote:

> Carsten Dominik <dominik@science.uva.nl> writes:
>
>> I do think this would be a useful feature.  Some properties I'd find 
>> useful:
>>
>> - Use symmetric encryption
>>
>> - Be able to recognize if an entry is encrypted
>>
>> - Leave the headline of the entry alone and only encrypt the text 
>> below it
>> and the subtree, if present
>>
>> - Support something like a CRYPT tag, leading to automatic encryption 
>> when
>> the file is saved, to make sure encrypted entries are never saved in 
>> clear
>> text.
>>
>> - Use only a single password per file, so once one entry is decrypted,
>>   others will open without an additional password prompt.
>>
>> Something like this.
>
> Yes, this is just what I'm thinking too, though I'd like the option of 
> binding
> different CRYPT tags to different keys or passwords.  So, I could have
> WORK_CRYPT, HOME_CRYPT, etc., and each would have its own separate 
> protection.
> This would allow multiple people to have their own private regions 
> within the
> same org-mode file.

Excellent idea, I did not think about this possibility.

> I should be able to create an external module for this that does not 
> affect
> org.el at all, but just adds keybindings to org-mode-map and 
> after-save-hook.

Cool.  Please do!

I have tried to read the allout documentation about it and found
it entirely undigestible for the cryptographically uninitiated.
I hope you can explain it better.

- Carsten