 Hello! Today, I'll be talking to you about how to organize your digital life in a privacy-preserving, machine-agnostic, and practical manner. And for myself, I am Zezdin Besarabov. I'm a student at the University College in London. And mostly, I'm a computer science researcher, so I do most work around blockchain, cybersecurity, and a little bit around machine learning. But I'm also kind of nerd about privacy and open source technologies, standards, and freedom, essentially. And so, which is why what I'll be talking to you about right now is something I've been researching as a high hobby for the past few years. And I'd really love to share what I've learned and hopefully you can take some experience out of this as well. So, I will be focusing on privacy today. But privacy is a niche subject. It's simply the minority of people care about it. And as such, when you focus on privacy, you definitely lose out some convenience and some compatibility compared to people who don't care about privacy. So, the solutions which I'll be showing you today will certainly make some compromises around that. And you really have to care enough about it. And you have to evaluate your risk or your cost to return ratio to see that actually it is worth for you. And for example, you should be expecting some problems left and right. So, for example, back if you're a password manager's database file, in case something goes wrong. So, let's say the thing that I would like to focus particularly is not just about privacy, but about generally good organization of digital life. So, that means I would like to organize everything that every digital information that is of value to me, such that it is completely independent of the operating system I'm running of the particular software of the particular front-end applications that I'm using, or of the particular hardware that I'm using it for. That means that everything should be completely compatible with everything else. And if I lose out any single device of mine, I don't lose out any information. And I can simply access the same information that is of value to me from any device I want to. And it should also be private. So, the key properties that I'll be looking for are support for end-to-end encryption, support for cloud synchronization, and mostly cloud-first storage. That means that everything should be stored somewhere else. Maybe not in the public cloud, but still somewhere else, not on the particular local machine. And it should be easily accessible and synchronized, but possibly cached. And, of course, it should also be standard compliance such that it's not dependent on the existence of any piece of software. And so, this talk will be presenting you various open source technologies which are adhering to these properties. Now, you likely know many of these, but the key value that I'm trying to bring here is the experience that I've spent essentially trying out many different technologies and seeing whether their details and the compromises that they're making are actually acceptable for the properties which I'm trying to assert here, which, like I said, should be completely independent of any hardware, software, OS, and things like that. So, hopefully, still you get to learn something new for this. Another point is that while I will be focusing on privacy, I really want to put a great emphasis on practicality. So, that means I shouldn't be making too much of a compromise in terms of convenience and in terms of interoperability to get some more privacy. So, there will be more private alternatives to the software which I'll be discussing today. And that's fine if you want to use it, just use it. But I think more people would be comfortable with a balance between practicality and privacy. So, the main talk points there are about... So, I'll be going over email, calendar, context, tasks, office, password management. And lastly, and the biggest topic that I'll be touching on, and the most interesting one for me, essentially, is personal fire storage. So, how do you actually get all of your digital information that's of value to you that's not email, calendar, and office files, of course, that can be easily organized, accessible, and has a scalable structure that is extensive enough such that if you ever want to store any new piece of information in the future, you still have a right place to store it. You don't need to change your folder structure or things like that. But first, let's start simple with emails. So, with emails, of course, the most widely accepted standard is to use IMAP. So, as long as you have an email host that supports IMAP and you can use pretty much many different types of front-end applications that use IMAP and that's good. And on the privacy front, we'll simply recommend using the widespread OpenBGP key. So, if you aren't aware, OpenBGP keys are public private keepers, such that if you want to send an email to somebody else, you encrypt your email with your public key and they are able to decrypt it with their private key. So, you get completely encrypted end-to-end communication. The sad point is that most people, of course, don't use that. So, you're likely not encrypting most of your emails that you're sending, but it's still essentially the option that we have right now. And as for email hosts, I would personally recommend Mailbox.org. Now, they aren't quite famous, but I've tried out many email hosts in terms of features, such as cost and compatibility with, of course, the requirements which I mentioned earlier on. This one seems to be the most extensive. So, they're completely standard compliant, meaning they don't skew the IMAP standards unlike, for example, what Gmail is doing. They have an OK Spam filter. They support custom domains and they support also C filters, which is pretty interesting. They also have their own PHP key server. And I think most importantly, they also automatically encrypt, if you want to, they automatically encrypt every incoming email with your public PHP key. So, I mean, you still have to, they still have access to your emails because obviously they're coming in unencrypted if somebody is not using their PHP key, but they're encrypting it as soon as they get it and as soon as they pass it through the spam filter. They're not really holding any copies of the decrypted messages at least, of course, officially. They're also based in Germany, so it's pretty nice as well. As for clients, I'm pretty sure that the widespread Thunderbird simply gets the job done. Just pretty extensive has lots of features, works well. So, that's pretty easy. Whereas for Android, I think their email is obviously a project that's really interesting and it's also very feature-proof, feature-full. Now, it can support syncing many different accounts at the same time. And my favorite feature that I haven't seen in many other places, including Thunderbird, is that it is able to automatically filter out tracking images such that it shows, it loads all the other images which should be normal and it simply hides the tracking images. So, that's a pretty good convenience feature. But of course, if you want to go more extreme, you can not load any images to begin with. As for when you want to encrypt or decrypt keys through Android, you simply have to have a keychain app that stores your private key and uses it for these operations. So, open keychain is pretty much the default way to go on Android and it works well. And you can also use it with a private key stored in Ubiqui. So, if you have one of those, you can decrypt or encrypt your emails through it. But of course, you have to have your Ubiqui constantly in your computer or on your phone every time you want to encrypt or decrypt an email. So, it might be too inconvenient for you. But this is an option. Cool. I would also like to mention Protomail is a pretty good more privacy-focused alternative. Now, the problem with Protomail is that they're too privacy-focused and for some people this comes with more inconvenience costs. But if you want to go for it, just go for it. Cool. So, coming into the more interesting part. So, Candidate Context and Tasks. They're pretty well-known standards for these. Caldath, Cardath. The problem is that usually these servers are not written to support any kind of encryption. So, obviously, if you're not self-hosting your own Candidate or Context or a task server, then it's not really any... It's not really good for privacy. So, Etysync is an adapter that essentially is a server and a client that essentially allows you to synchronize your Context tasks and calendars across any of your devices into an encrypted matter. So, they use their own protocol for communication between the server and the client. It's not regular Caldath, Cardath, of course. And it's pretty encrypted and it also supports version control. So, it doesn't simply update the current state, but it also says, you know, you added this contract, then you edited it, and so on and so forth. So, if something messes up, you can always go back. That's pretty interesting. I would like to also say that developer is pretty proactive. So, he has always responded very quickly to my issues and helped solve them. So, he's currently... I mean, everything's going to be the open source. You can self-host it if you want to. But he's also selling, right? He's also selling hosting, so I would encourage you to support him on that one. One minus that I can find here is because it is so convenience to use, meaning, for example, Etysync, when you set it up on your Android, it simply is a native Android context, calendars, and task providers. So, given that pretty much every Android app or access to your context or calendars, you may not think that it's secure enough or private enough for you to store any valuable information in these containers, in which case you might want to use a more private alternative, like ProtonMail's own calendars or contacts. But other than that, it works on Linux. It works on iOS as well. On Linux, it locally hosts a CalDef and a CardDef server. So, you can pretty much use it with any front-end you want, and yeah, it works pretty well. As for very particular front-ends, I really like the simple line of open-source applications on Android, so simple context, for example, is a pretty good front-end that just gets the job done for context. Simple calendar, same for calendar. It's pretty okay. Whereas for Linux, the number of lighting is pretty much a default option, I think, that pretty much most of you guys are using, for controlling your calendar and accepting invitations through email and managing them left and right, of course. For contacts, Thunderbolt also has an add-on called Cardbook, which can synchronize via Cardstaff to the local Edison client, for example. And it also works okay. And when you get to tasks, it becomes a little bit more complicated. So, for desktop, we still have good applications for that standard compliant and work with tasks. So, for example, my favorite one is KOrganizer. It simply supports the, I think the complete or pretty much everything around the task standard, and it simply gets the job done. The problem with tasks is when you get to the Android site, I actually cannot find any single application that supports the full task standard. So, the more widespread application, I think, it's open tasks, and it supports most of the standards, so that means that you can still synchronize, for example, with Edison, and it works well. But it doesn't support categories, it doesn't support subtasks, and the UI is not very configurable. So, it gets a pretty basic job done, but if you want to actually take advantage of the features that allow you to organize more tasks in the standard that simply doesn't get that job done. Also, developing is not particularly active as well. I mean, it is going on, but it's not very active. So, another alternative, which I prefer, is task.org. Now, task is a lot more active and a lot more feature-full than open tasks, but unfortunately, it also doesn't support the full standard. What I mean by that is there's this one tiny feature that's missing, which is that tasks usually have a start date and an end date. Start date knows the date where you should be able to start the task, and usually in open tasks, for example, if you set a start date in the future, it's going to hide the task so that you don't see it, because obviously, you can't act on it, so why would you want to see it or clutter your menu if you have too many tasks? So, that one doesn't get synchronized with the standard right now, so that's a bit of a bummer. If you want, you can help the developer by contributing to this particular issue, but otherwise, the UI is pretty great, and yeah, pretty sure this is going to become the default go-to choice for any kind of task manager on Android. So, what about Google Docs? Well, for me, Google Docs is very convenient. Module, of course, the privacy concerns is really good to collaborate with people in real-time, and a nice alternative to that is Mailbox Office. Now, they do support end-to-end encryption, so they have cloud storage and real-time cloud synchronization on Office files, and they have a web-based frontend that you can edit them, and it is end-to-end encrypted, but not when you collaborate with other people. So, that's kind of a bummer. So, I was thinking that maybe an interesting idea to extend the field is to maybe develop a new open-source project that essentially allows you to collaborate real-time on Office documents using an end-to-end encrypted manner, but so far, the most secure way to handle your documents is to simply edit them yourself. For possible management, the classic key pass is pretty much the most famous one. Key pass is usually written in traditional written-for-windows, so our very implementation for Linux is a key pass XT. So, key pass introduces an open-source database format that is essentially a structure that can hold passwords. So, key pass XT completely supports this, and it also supports many other different convenience features. For example, it supports two-factor authentication with UV keys, which is another bonus for security, of course. It's not that secure in a sense that you have a decryption password, and the way the two-factor authentication works is that you also have an additional private key start on your physical UV key. So, key pass takes your input-unlocked password, passes it through the UV key, which gets encrypted, and then it unlocks with the return password from the UV key, which obviously doesn't change at any time. So, as long as somebody manages to snoop that, it's over. But it's also kind of convenient, so I guess make your choice here as well. And right now, there's a small bug about data loss in some edge cases that I found, but should be fixed quite soon. As for Android, the recommended application that is key pass to Android completely supports the key pass power format. It supports the UV key encryption decryption, and it also handles database conflicts quite well. So, for example, if you're sharing your database file on a cloud storage, and you access it from your, of course, computer or phone, if you change it on your computer and it's still loaded on your phone, then key pass will say, you know, database file has changed. Do you want to reload it? And if you've already made local changes on the Android, it's not going to simply remove them. It's going to merge both of the changes together. So that's pretty good. And in order to be able to use UV keys with the key pass to Android, you need to have this extra library called YKDroid that essentially handles UV keys challenge response mode, which is what I explained earlier about how the decryption key gets created for the database. As for iOS, I don't personally have iOS, so I haven't used this, but the recommended application is strongbox, which is also supposed to be completely compliant with the key pass standard. I would also like to make, to mention the MicroG project, which is something I really like. Now, I currently use a Huawei P40 phone. So that's Huawei's first phone, which comes without any Google apps or Google services. And essentially I realized that pretty much every app, no matter how related they are to anything Google, they still require Google services for pretty much everything. Pretty much every app that requires location is written to only support Google's proprietary location provider from Google services, which is pretty stupid in my opinion, because you don't need this to determine my location. Obviously you can have it as a convenience feature, but why would you completely require it? And so MicroG is a system-level re-implementation of Google's proprietary services that is supposed to look like Google's own proprietary services in part of other applications, so that they can actually run without having any proprietary Google services. So I haven't tested it out myself because my phone is bootloader locked, so I can't route to the can to install MicroG, but lots of people have tried it, and it seems to work for the majority of cases, so that's pretty promising. So far I've essentially mostly focused about the generic things like email, context, tasks, but our digital life comprises of many other things. Of course we have documents, we have folder albums, we have personal projects, and we have lots of different resources which are either scattered on some random files, some random computers, or scattered on some random online platform somewhere else there. And I would really like to find an easy centralized way where I can organize every piece of information that is of value to me, so that I don't have to remember that, yeah, I have this Trello bird that is related to this Hackathon project, and the actual Hackathon project is on GitHub, and the actual Hackathon project submission, they execute the compiled binary, for example, is in this random folder and on my laptop. I would really like to find an easy to use centralized way where I can keep track of all these resources and they can actually be grouped together the way they're supposed to be grouped together. And so I've been exploring different cloud storage solutions to do this. And so first I will present the best cloud storage solution that I have found myself in terms of software and adapters and clients, and then I'll tell you how did I actually arrange all my digital data in a consistent folder structure such that it is extensible and it also supports pretty much every piece of information that is of value to me. So this essentially took most of my time to research for the past years is finding an adequate desktop cloud singing client. There are too many of them, and many of them claim to work and many of them actually work to some degree, but most of them don't really work well when your drive is, for example, some terabytes in size and which is what happens if you're trying to upload every piece of information that is of value to you somewhere else is that obviously it cannot be downloaded or synchronized directly to your computer because it's going to be too large. And so when I was looking for a desktop singing client which allows me to mount my cloud drive such that I can still instantly and easily access any particular file I want to and a singing client that of course supports end-to-end encryption such that, of course, the particular cloud provider that I'm using shouldn't really be able to access anything about my data. And lastly, it should support cache. So the most frequently used files or folders or anything else could easily be stored as a cache on my computer is, of course, adequately and frequently refreshed but it's still cached such that I don't have to send requests to the cloud drive every time I'm trying to open the folder I've opened 15 times today already. And the client which I've found to get most of this way through is RClone. RClone is a pretty big project in terms of cloud synchronization. It is very modular and very extensive. What I mean by that is that it has adapters for pretty much any cloud storage that you may have heard of. Of course, Google Drive, OneDrive and all the other cloud store providers. But it also supports end-to-end encryption. It also supports caching and it's completely cross-platform. So far so good. And, yeah, the biggest problem I've been having with RClone is currently its implementation of caching is not particularly good. And they are trying to re-implemented via VFS caching right now because it used to be written in a different way before. And right now, the reason isn't the caching solution that works reliably well such that I can simply recommend it and say, you know, this is what gets the job done I forget it about. So right now sometimes you may incur some data loss with caching and then sometimes it may not cache the things you want to cache. So if you are curious about the project and you want to contribute, I think this is a pretty important area you can contribute to. As for Android, I said that this is completely cross-platform. So RCX is a wrapper for RClone. So it simply uses the RClone binary plus adapters to native Android APIs such that you can access your cloud storage on the Android. It works pretty well. If I have to be really big about this it currently hasn't fully implemented all the Android storage APIs so it's not that convenient to use yet but it's pretty convenient and it simply gets the job done. That's pretty good. So far I've said about how to actually set up a cloud storage but there is a bigger question than that and in particular how do you actually manage all of your information in one central location? And I have experimented with many different things but one thing I realized is that there's simply one core property that I want my storage system to have and that is I have resources like files like you can call them files, resource, whatever but for any resource that may be of value to me just a photo document or something else that I may want to store in my storage system it has to have a predetermined place and that place should be really easy to figure out such that even if I don't know if I store this resource I can very simply check this location and if it's not there it shouldn't be anywhere else so as long as this property holds then your storage system can be arbitrarily large and it will be completely fine because you'll always be able to find the thing you're looking for and that's a pretty cool property that I have been trying to somehow get by finding the perfect folder structure that can average everything but I guess it's kind of obvious but I don't think there's a single folder structure that simply gets it all done for absolutely any piece of information in the world but a pretty good more abstract solution that I've found is the following so forget everything about folders or file systems or how this actually works let's talk about a lot more abstract things so we have different resources for example I have this hackathon project I have this medical record for example and I would like to be able to store these somewhere and to easily access them whenever I need them and so I set up a system of tags so tags are a set of labels that I put on any particular resource these labels are without any particular order but simply say that this resource relates to this label and I need to have a very consistent system on what labels I have and therefore which resources need to be labeled with this particular label so I could have label events for example and any resource that is related to events should be labeled with events such as a hackathon submission for example I could also have the label this particular hackathon name for example hack Zurich this is the last hack that I went to and so I could also put the tag hack Zurich on this resource as well and I can also put the tag project on this resource as well because it is a project and so once I define all the tags that I want to place I simply tag all my resources and why I'm trying to do this is because it actually helps me a lot with searching for resource based because once you know the tags I have I can simply filter by them and say okay if I want all the projects I have I can simply filter by tag projects and it's going to give me my hackathon submissions it's going to give me all the other side projects which are not hackathon submissions for example whereas if I'm looking for events it's going to give me all the hackathon submissions or all the hackathon photos or everything else that I have tagged under events and that's pretty convenient but of course we're living in a world where folders are the default way to organize stuff and having a folder structure is a lot more restrictive than having tags and resources which is a lot more abstract and a lot more fluid way to organize information but I still had to make a folder structure because pretty much every software is written to work with the folder structure and so I can put with this solution that still keeps the idea of having tags but also works in a folder structure and it's kind of semi efficient but it's not that efficient compared to the more abstract idea that I just shared but it still gets the job done so how it works is that I still have folders and every folder is related to every particular tag so I can have the top level folder events for the tag events and then within that I can have the particular hackathon within that I can have for example my hacklist submission or my particular document and how this is actually arranged is I have a particular order of tags let's say precedence of tags so if some piece of resource has a tag events for example which is the highest precedence tag in this example then it must be placed in that folder no matter what other tags it has it must be placed in that folder and then it must be placed in other folders recursively based on the other tags as well of course first always taking the highest priority tag and so what happens is that if events is higher priority than documents then obviously if I have a document related to an event it's going to be placed within events documents and if I have a document which is not related to an event then it's simply going to be placed in documents so this folder structure still works because as long as I know my tags as long as I know the order of my tags I can still easily find what I'm looking for so if I'm looking for a hackathon document then I know it must be in events it must be in also documents as well within events but if I simply open documents of course I won't be able to filter for all the documents in my folder structure because they're simply scattered around everywhere because I don't have a single folder that contains all of the documents for example unlike what I would have been able to in my last example so in this case it kind of becomes a bit more fragmented and it's more difficult to search for resources but it still works and I think it would be interesting to create an open source project here maybe it could be a file system maybe it could be a file explorer that would also allow me to filter for documents and it would actually show all the document folders around and if you know any open source folders that could get the job done just tell me doing the Q&A what about online resources though because so far what I said mostly applies to local files and that's easier to organize because we already have them but like I said we have getCup repos, we have these Trello boards or whatever other online accounts or resources you may have and I would still like to place links to these resources within my folder structure because again this is my central location for information that is of value to me so every information that is of value to me should be there and so I couldn't find a standard compliant URL file type a file that you can make and when you open it it opens the browser with that particular URL but there is an interesting trick around which is if you use this HTML file template and you can use the method tag to redirect to a particular URL and once you save this text as an HTML file and you place it in your folder structure once you open this HTML file it's going to open that URL so that way it's a workaround but it still works and you can link to your online resources and it's fine so that was essentially my talk so far I'm very thankful that you stayed till the end of ArtConf and here are my contact details I would be very happy if you managed to get some value from my research or from my site hobby so far and yeah, have a great day Awesome, thank you for a fantastic talk, Svezdan I'm secret and I'll be asking the questions there's quite a few today actually so I'll just crack on, there's quite a few together Peter Strudel asks I've never heard of Mailbox but no mention of Proton Mail or Tutanota they also support PGP Yeah, so I mentioned Proton Mail later in the talk Tutanota is fairly similar but they also have a pretty major private focus but they're based in Germany which is of course in the 14Is so that's a downside for some people whereas Proton Mail is of course Swiss Proton Mail and Tutanota is that they are very privacy heavy and so they're trying to rebuild most of the email slash calendar slash contact task infrastructure on them and of course when this whole process finishes and maybe they will be convenient enough to use for general public but right now, for example, I think either it's right now or up until very recently you still can't do full text search within the content of your Proton Mail emails whereas generally lots of features aren't implemented yet and it's simply not as convenient but of course if you value the privacy, go for it Steamwreck asks, it's a question along the very similar vein Steamwreck asks, did you look into the differences between Mailbox.org and Proton Mail? Yeah, well first Proton Mail is a little bit more expensive the country data location of course but still Proton Mail tries to reinvent everything and for example their context app and their counter app you can't really synchronize this with your local counter frontend on Android so you just have to use their app which of course, for example, still up until very recently for example, didn't support recurring events or they're simply implementing all the features that we have gotten accustomed to Right, I see Another question from Steamwreck why do you prefer to use Mailbox.org for email hosting instead of running your own server? So the thing about running your own server is that if you don't do it well enough you may easily get into everybody's sandboxes which is why I simply wouldn't recommend it for convenience sake but of course for more privacy and if you're willing to run the risk of sending a very critical email which may get thrown away at any point in time you could definitely host it yourself Yeah, for sure Ramzi asks, have you tried GitLab for projects and Trello like boards? I haven't used GitLab for Trello like boards per se but I'm not sure how, like, do they provide any encryption overall or do they provide anything else that may be valid to Torotoro privacy topic right now? Well, I mean, with GitLab you can sell posts so I don't know if the free sell posted version gives you project boards but I think that would be the intent of that question is to sell post it Yeah, I mean, how much do I do myself but just use GitLab for Git Right A. Bowman asks, have you ever considered a plain old photo with R-Sync or Unison? Of course, I expected to get some more questions of this type you know, have you just tried to do the most basic primitive thing instead of the more complicated thing? Right The thing is, if, for example, organizing your calendar in a text file works for you then go ahead but the problem with, for example, R-Sync is that it's simply not it's a technology whose purpose is not to do that it's, for example, its purpose is to synchronize one state on one machine to another state on another machine but if I had this huge cloud drive that's like 10 terabytes and I have my mobile phone that I would like to access everything within that drive easily and in an encrypted way and it still gets to cache my most frequently used files then R-Sync simply won't get the job done and yeah, I mean, it could work but it's simply not I don't think that's the right tool for the job Right I mean, you could argue like R-Sync could be used as a transport layer for some larger computation maybe I mean, R-Clone was inspired by R-Sync essentially, that's why it's in the name but it's completely independent in terms of technology Right Infraprado, I hope I pronounced that right, asks have you looked into TMSU, it enables you to tag files I'm not sure of the context of that question TMSU It's from the last slide where I was talking about folder structures and stuff like that I actually talked about TMSU, so thank you for that I'll look into it, it could be interesting Cool And next up we have a question by Kieto Oh sorry, by R-Sync Why not hosting NextCloud on a VPS? That's pretty simple now with these Docker things Yeah, and actually that's a pretty good solution honestly The only reason why I did not recommend it is because again, you have to sell false things In this case, it's not an email server, so you don't really run the risk of ruining your work essentially But you still have to rent the server somewhere else and obviously if you're renting a VPS on some arbitrary location then you have to trust them that they're not accessing your data It's simply not that simple to set up, but of course if you have your own NAS somewhere at home and you would like to use it then certainly that's a good solution but then again, what if your power dies out and then you're somewhere in the Philippines and that's over So that's why I would personally simply get some reliable cloud hosting from a big company and just sync with everything Yeah, and the next question from Kieto is basically the same as have you thought about or tried a self-hosted NextCloud instance? I guess there's an argument to be made I guess by like self-hosting, hosting NextCloud for other people, right? Like your family or your less technologically inclined friends or whatever like providing them a service using the technological ability that you have is kind of an approach you could take That would certainly be a lot easier for them because all the way they don't have to damn themselves set up the more complicated technologies such as Add to Sync or the other techs which are recommended in this bed and they could simply install the content and connect to the NextCloud server Yeah, that's a decent solution but of course it has a job ask I'm in Vakil, I'm in Vakil asks what protocols does Arcloan use? So I'm not sure what you exactly mean by protocol, so Arcloan is a client application that simply has many different adapters to the native APIs for the different cloud providers so it simply creates a common interface between all these providers and then it also uses that common interface for encryption or for other more complicated things like chunking and caching and stuff like that which is pretty convenient Yeah Okay, awesome And Peter Strudel asks just a comment, you could look at rslashdata curator on Reddit, I'm not sure what rslashdata curator is Yeah, it's separated for something, I haven't heard of it but thank you, I'll take a look at it And finally, Vakil Daba asks, late comment, join too late so maybe it's not what you're looking for but maybe perkeep.org is what you're looking for I don't know what perkeep I actually know about purekeep and I have tried to look into it and I tried to set it up but the thing is it's still under active development and it looked like many key features are still missing out so I may be wrong and if you know something else just do tell me But it did not, I mean, I don't remember the exact reasons I had back in the tank, in the tank this was like a year ago or something but I didn't have the impression that it simply was functional enough to get the job done Right It looked like simply a storage for photos that has versioned history or something else but I think I may have completely forgotten Right, that was going to be my follow-up question is as someone who's never heard of perkeep if you could like give a five second summary but I guess you already did that This, these text next two questions or comments I guess, don't have an asker, subscribe to them For Proton Mail, they have a Linux bridge and you can use it with Thunderbird IRC, also Netscloud has boards too Yeah, the Proton Mail bridge is actually quite useful and I think that it essentially solves a big part of the problems that the native normal Proton Mail plan has in terms of missing features, I haven't tested it myself personally to know exactly to what extent it actually functions as a native SNTP slash IMAP server because the Proton Mail bridge is something that simply is self-hosted such a mail server on your computer, such a mail client on your computer such that you can actually access it from the boat or whatever I didn't really know that, I mean, I didn't really know the Netscloud had boards but it looked like it had lots of features so it may have boards too in which case maybe it will be a good idea to use it Yeah, alright And oh nice, we've got a follow-up question which I really like from Pitystriddle, is it possible to DIY Ubiqui? Is Ubiqui a standard physical token or can someone do their own? That's a great question, the thing that I don't like about most recent Ubiquis is that their firmware is actually proprietary to their good values that became proprietary quite recently And of course that may open the door to some problems as well but whether it is actually completely standard compliant, whether somebody else can completely create a Ubiqui I'm not really sure what protocol they use to communicate with the computer but they support pretty basic features like They support time-based, one-time password generation, they support, they implement the standard for a PGP smart card, so I guess that's something that you can easily re-implement something else And they also, the thing that, actually Ubiqui also the default function of a Ubiqui that simply creates one-time password is that it's not time-based but it's a password that your client application wants to receive that password, it has to vary very tight against Ubiqui servers to see if it's actually valid or not I think that is also defined as a protocol so you could create your own Ubiqui server that may work with this kind of encryption and still authenticate For example, Mailbox have actually done this, so Mailbox actually have their own instance of a Ubiqui authentication server so you can buy Ubiqui from them and it will be authenticated by them instead of a Ubiqui if you don't want to trust them because they're in America of course Right, I wasn't aware of Ubiqui phoning home to their servers to check for verification, but I mean yeah, the primary protocols that they use U2F and FIDO and then also yeah the PGP shit and everything like that, they're mostly open A couple of people have mentioned SoloQi or NitroQi as alternatives, but you're right, as of I think Ubiqui 3 or I think it's 4, yeah they stopped publishing their firmware as free software which is certainly problematic when you're using a security-centric product Like my Ubiqui is old enough for it to be open source but I really wouldn't use any of the recent ones so if they'll turn this into a recommended SoloQi and NitroQi actually work then you know, just use them And I think I remember a project at one of the congresses of vaguely to the effect of soldering your own Ubiqui was I think the general concept of the talk And that is, oh no there's one final question if we can answer real quickly, what's next for your system? What do you think about doing next or what doesn't currently spark joy? I said not answered on the stream, I'm very confused. I think we're going to wrap up here because we got to get to the outro talk so this was the final talk of Archon 2020 Yeah so thank you for being part of it and I will hand over to the rest of the guys, thank you very much, cheers, bye