Qabel
| Qabel | |
|---|---|
| Basic data
|
|
| developer | Qabel GmbH |
| Current version | source code only |
| operating system | Windows , macOS , Windows Phone , Android , Firefox OS , Ubuntu phone OS , Linux |
| category | Encryption |
| License | QaPL |
| German speaking | Yes |
| Qabel.de | |
Qabel is a software platform for end-to-end encryption for a variety of applications such as shared calendars, e-mail services and social networks.
background
After Edward Snowden published details of worldwide online surveillance by the US secret services in 2013, interest in end-to-end encryption methods increased sharply, as any other form of encryption must be considered insecure. However, the use of end-to-end encryption requires a great deal of expertise and is not trivial due to the constantly growing number of protocols and applications, each with its own encryption method.
Many proposals that have become known since then concentrate on sub-problems in the form of individual applications that continue to send metadata or do not allow the source text to be verified. Therefore, Qabel was designed as a platform for a wide range of applications and protocols. In contrast to many other encryption applications, minimizing exchanged metadata is a Qabel design goal.
The data exchange with other computers is encrypted. For example, if Qabel cannot encrypt an e-mail, a dialog box asks whether it should be encrypted with PGP instead . If this fails, the email will be sent unencrypted.
Word origin
- Like a cable , Qabel should only route data where it belongs and not to other places.
- “Qabel” is the Maltese word for “before”. The encryption takes place before the upload.
- The manufacturer states that in Klingon "qab 'Ij" stands for "badly audible". Grammatically this is not entirely correct and rather says the opposite: "It is angry and listens".
architecture
The Qabel architecture is based on a client-server model .
Client
The Qabel Client contains the user interface (GUI) and a bridgehead library. This library encrypts and decrypts data that leaves or reaches the computer using various standard protocols (e.g. IMAP ).
Storage server
The encrypted data is sent from the client to a storage server that does not have to be in Germany. For this, users receive portioned data areas (quotas). The writing of the (encrypted) data, but not their reading, requires authentication. This means that not only the investigation authorities receive the legally prescribed access in the FRG in accordance with Section 110 of the Telecommunications Act, but all interested parties. In contrast to software products that do not require end-to-end encryption (such as De-Mail ), the data that can be obtained from this are encrypted without exception and are therefore useless.
Drop server
Any exchange of messages between Qabel uses a drop server. On this, messages are stored asymmetrically encrypted and copied encrypted to the Qabel client in order to be decrypted there. A Qabel client can eavesdrop on any number of drop servers - but only decrypt messages intended for it.
Conditions of use
Qabel should be published under Windows , under macOS , Windows Phone , Android (preferably CyanogenMod ), Firefox OS , Ubuntu for Phones and Linux, but due to restrictive terms and conditions clauses expressly not under iOS (iPhone / iPad / iPod), as this is from Qabel is not considered sufficiently trustworthy.
Encryption algorithms
For larger amounts of data, Qabel uses symmetric cryptography with AES-256-GCM. Similar to other procedures such as PGP / GPG or TLS, only session keys are encrypted asymmetrically (see also hybrid encryption ).
Business model
The start-up financing is provided by a crowdfunding campaign with the Indiegogo web portal, which by the end of the campaign (July 30, 2014) had reached almost half of the budgeted funds (EUR 19,072.- of EUR 40,000.-). The version, available free of charge, is non-commercially applicable. The commercial use of Qabel requires the approval and financial participation of Qabel GmbH.
The patent was transferred in trust to the attorney Meinhard Starostik .
Shareholder of Qabel GmbH
- praemandatum GmbH 21%
- Peter Leppelt 7.5%
- Benjamin Sagittarius 7.5%
- Christian Zuckschwerdt 6%
- hannover innovations fonds GmbH 0.5%
- prioeins management consultants GmbH 7.5%
- Kirsten Ackermann-Piëch 12.5%
- Peter Ackermann 12.5%
- Hannover Beteiligungsfonds GmbH 25%
QaPL license
Use of the Qabel library requires acceptance of the terms of the QaPL license. The QaPL license is similar to free licenses . However, in the "Restrictions" section, it prohibits:
- commercial exploitation of the Qabel platform not approved by Qabel GmbH,
- the linking of commercially exploited applications with any software under the QaPL license,
- the use of software under the QaPL license for military or intelligence purposes.
It is therefore not free software.
reception
The project has not only been followed closely in the trade press since June 2014. In addition to www.heise.de, ZEIT and SPIEGEL ONLINE reported on it. Qabel was unanimously rated as a good network policy approach against network monitoring. An article in the computer magazine c't from August 2014, however, is devastating.
Web links
Individual evidence
- ↑ Press kit from qabel.de ( Memento of the original from October 23, 2014 in the Internet Archive ) Info: The archive link was inserted automatically and has not yet been checked. Please check the original and archive link according to the instructions and then remove this notice. , P. 2, dated June 11, 2014, accessed on September 25, 2014
- ↑ heise.de: Qabel promises tap-proof cloud platform , article from June 11, 2014, accessed June 19, 2014
- ↑ spiegel.de: Crowdfunding for security: With Qabel encryption should finally become easy , article from June 12, 2014, accessed on June 19, 2014
- ↑ zeit.de: A Qabel connection for encryption , article from June 12, 2014, accessed on June 19, 2014
- ↑ netzpolitik.org: Qabel - turnkey ecosystem with real data protection , article from June 11, 2014, accessed on September 25, 2014
- ↑ c't: Cloudy Encryption - The German Qabel Project for Secure Cloud Services , article from June 28, 2014, accessed September 25, 2014
