Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[1.0.0] [docs] Overhaul Transfer Device and export recommendations #4838

merged 3 commits into from Sep 17, 2019


Copy link

eloquence commented Sep 17, 2019


Backport from #4657 into the release branch. Ready for review.

eloquence added 3 commits Jul 31, 2019
Resolves #4620
Resolves #4646
Resolves #4434
Resolves #4670

In addition to introducing the Transfer and Export Device,
this commit clearly breaks out optional hardware into its
own checklist, more strongly recommends purchase of a
printer, and strengthens recommendations for malware

It removes some outdated recommendations and a reference to
storing the journalist's GPG passphrase in KeePassX
(not mentioned anywhere else).

It removes instructions for journalists to set up individual
GPG keys, as they are unlikely to be followed, and the more
critical recommendation is to ensure tha the Export Device
is encrypted.

It updates the overview diagram and data flow diagram
consistent with the above changes. This update also makes
the diagrams more consistent with terminology and current
practices. It removes OnionShare from the data flow
diagram, as it is not currently mentioned elsewhere in the

(cherry picked from commit 948039b)
(cherry picked from commit 14bdc72)
The hardware recommendations more clearly prioritize choices we
can support and are familiar with (VeraCrypt, USB w/ write switch)
over ones we cannot currently support well (hardware-encrypted
drives, write blockers).

The threat model has been updated consistent with the data flow
updates; note that the clarified data flow means that the Transfer
Device never stores _decrypted_ submissions.

The use of write blockers for the Transfer Device has been
clarified, as well.

(cherry picked from commit 3b886df)
@eloquence eloquence changed the title [docs] Overhaul Transfer Device and export recommendations [1.0.0] [docs] Overhaul Transfer Device and export recommendations Sep 17, 2019
@eloquence eloquence added this to Ready for review in SecureDrop Team Board Sep 17, 2019
@conorsch conorsch self-requested a review Sep 17, 2019
Copy link

conorsch left a comment

Confirmed accurate backport.

@conorsch conorsch merged commit 6796817 into release/1.0.0 Sep 17, 2019
3 checks passed
3 checks passed
ci/circleci: lint Your tests passed on CircleCI!
ci/circleci: static-analysis-and-no-known-cves Your tests passed on CircleCI!
ci/circleci: translation-tests Your tests passed on CircleCI!
SecureDrop Team Board automation moved this from Ready for review to Done Sep 17, 2019
@emkll emkll deleted the docs-backport-4657 branch Oct 21, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
2 participants
You can’t perform that action at this time.