On Sat, 13 Jun 2020 14:28:46 -0400, Paul wrote:
> Both you and the recipient can go here.
>
https://www.7-zip.org/
Hi Paul,
Thanks for your purposefully helpful advice, where, this is a question not
of what "can" be done, but what's a "good" way to do it.
For example, on all my systems, both 7-zip & Veracrypt are standard fare;
but this is for someone who is not technical, where it's a complexity to
ask them to install either 7zip or Veracrypt "just" to decrypt a file.
Mainly I was hoping there's something "native" in Windows... so that the
recipient doesn't need to "install" anything.
There is this concept of the native Windows 10 Pro encryption, and I did
find out that the recipient has Windows 10 Pro on their work computer, so
if I could figure out how to pass them the encryption certificate, that
might work best. [They didn't seem fazed when I said they shouldn't do
personal things on a work computer.]
Have you ever sent a recipient a Windows-10-Pro native encrypted file?
o In my tests today, it encrypted with a "certificate" of some sort.
Do I pass the user that certificate?
o Where do I find it?
> While you could use WinZIP, I believe the old password scheme on
> that is trivially crackable....
I agree with you where I have "cracked" my share of supposedly
password-protected files (e.g., PDFs) and where 7-zip has replaced WinZip
for me, many (many) years ago.
And, as you're well aware, we're not hiding from a TLA here; we're just
trying to send a 4MB zip file of tax records, which, if someone is reading
our mail on the Google servers, then we have _bigger_ things to worry about
than tax records which, eventually, are sent to the Feds anyway.
I just wanted to know what's the simplest general-purpose encryption use
model, for prudence, for non technical people.
> Some email systems, do not allow convenient attachments, because
> they're "assumed to contain malware" :-/ Don't be surprised if
> whatever you attempt to do with attachments, simply won't work.
> Welcome to 2020.
I'm well aware that Google Gmail won't send some things, for example,
Android APKs, even when zipped and/or renamed; however I tested both
7zip-encrypted and Veracrypt-encrypted files today and they worked on my
side (I haven't heard from the recipient yet).
So, if the best answer turns out to be either 7Zip or Veracrypt, then I'm
pretty sure it will work as I sent the same format files in the test.
In summary, if I was sending to you, I'd choose either 7Zip or Veracrypt;
but for a non-technical person, I'm hoping that the Windows 10 native file
encryption (or perhaps some other "simple" solution) would work.
In the case of Windows 10 native file encryption, I successfully encrypted
the zipped folder; but it encrypted it with a certificate that it had
(somewhere???) tied, presumably to my username (which certainly isn't
theirs).
SO I'm unsure what the use model is if I use Windows 10 Pro native file
encryption, where I only found out after I posted this thread that teh user
prefers to use their work computer which is Windows 10 Pro.
Has anyone here ever sent a file to someone which was encrypted with
Windows 10 Pro native file encryption? How?
--
Seeking the best answers takes a bit of help from others sometimes.