SecuSend - Software for secure file sharing.

[SSE]

Hi All!

I am happy to announce the launch of the SecuSend Beta.
www.SecuSender.com

SecuSend is a files encryption application that allows files encryption for multiple recipients. You can protect files and store them on any media or share them securely with others. You can encrypt files for specified set of recipients, so only this set of recipients can decrypt files on theirs PC’s.

You can get the Quick Tour of SecuSend features.

It's the Beta version of software, I would be happy to hear from you any suggestions for improvement!

Thanks.

[mouser]

Welcome to the site SSE,
I'd be interested in hearing more about the process of encrypting a file to a user.  It seems like you must be doing some kind of public key encryption thing, but i don't see where you are exchanging keys between users.

[40hz]

@SSE - first up let me join mouser in saying "Welcome to Donationcoder!" And to thank you for bringing SecuSend to our attention. Nice website too!

i don't see where you are exchanging keys between users.

-mouser (June 13, 2013, 05:55 AM)

@mouser - I think it's up to you how you do it. In their tour section there's this:

When you trying to encrypt files for other person you need to add contact key to the available recipients list. The other person can send you contact key file via email, share on social network, USB flash drive, etc. When you receive a key file you can easily add it to the available recipients list by using main menu command...

I assume you'd need to do the same to share your own public key file.

[SSE]

Thanks guys  .
As for the question about files encryption - this is a pretty straightforward process. Each contact in your Available Recipients list is a public key, which is using in process of encryption. As 40hz mentioned you can easily send your contact(public key) to other person using  the way you like.

[40hz]

@SSH - quick question purely out of my own curiosity...

One of the problems with any encryption utility is how well you can trust the author to (a) have written good code, and (b) not to have put a backdoor in it. Which is two of the reasons (i.e. QC and transparency) why things like TrueCrypt have open sourced their code, and all major encryption methods have (AFAIK) published their algorithms.

As an independent developer, how do you address those concerns?

Please don't take my question as a challenge or criticism. Not being a software developer I'm interested more from a business perspective since I'm a systems person who is professionally involved with data and signal security.
 

[SSE]

@40hz - Good question. As for encryption method you can check Techical Specification section. I have just released beta version of a product and it's a good time to think about user level of trust. Talking about similar product on the market (closed-source) I think Trust is based on the company "size" and "persona" and probably on software analyzing from crypto experts.

It's a great question to think about.

Thanks.

[f0dder]

Decent idea, and looks like a user friendly interface.
Some questions:

What's TDEA? Another name for triple-DES? (And why include such an algorithm?)
Which mode is AES used in? (CBC, XTS, ...?)
Why MD5 for hash?
Which public-key algorithm is used, and which bitsize? Which PRNG, and how is it seeded?

Are both file contents and filenames encrypted? Is any compression involved?

[SSE]

What's TDEA? Another name for triple-DES? (And why include such an algorithm?)

-f0dder (June 13, 2013, 09:45 AM)

Yes, Triple-DES. It's used as signature algorithm type in process of encoding enveloped data.

Which mode is AES used in? (CBC, XTS, ...?)

-f0dder (June 13, 2013, 09:45 AM)

AES with CBC mode with IV unpredictable at encryption time.

Why MD5 for hash?

-f0dder (June 13, 2013, 09:45 AM)

Currently it's used for package integrity, but will be changed in the next version to the SHA.

Which public-key algorithm is used, and which bitsize?

-f0dder (June 13, 2013, 09:45 AM)

RSA-2048

Which PRNG, and how is it seeded?

-f0dder (June 13, 2013, 09:45 AM)

Microsoft CSPs is used as random number generator.

Are both file contents and filenames encrypted? Is any compression involved?

-f0dder (June 13, 2013, 09:45 AM)

Yes, both contents and filenames encrypted. In this version compression is not involved, but it would be in the next version. Compression before encryption.

[Praetorian2999]

hi
where can i download this program as the web site is down and i cant find it

[app103]

Hi Praetorian2999. Welcome to Donation Coder! 

I was able to find a copy to download on Cnet: http://download.cnet...2092_4-75938922.html

[SSE]

hi
where can i download this program as the web site is down and i cant find it

-Praetorian2999 (January 11, 2014, 04:56 AM)

Hi Praetorian2999,

Currently web site is down due to moving to the new hosting.
You could download the latest version of SecuSend using link that app103 user has provided (thanks by the way!) or you could send me your email address, so I'll sent you SecuSend setup by email.

[superboyac]

i love developments like this, will be following...

[SSE]

Hi Everyone,

Just a note that the www.SecuSender.com  site up and running, so you could download the latest version on download  section.

It would be very helpful to receive bug reports, features requests, and your thoughts to [email protected].

Thanks.