|
Apr
14, 2003:
Source
code package is available. Read
this before deciding if you really want to download
it.
Apr
14, 2003:
ClipSecure v1.2 Final is
now available.
Check
out what's new.
Apr
13, 2003:
Some hints
on how to configure v1.2 final for use with Instant Messaging
programs (this example is for Yahoo Messenger).
Mar
21, 2003:
ClipSecure opensource now has a SourceForge
home. Not much there yet. Establishing
the CVS trees will be first priority.
March
17, 2003:
ClipSecure v1.2 Beta 2 is
now available.
As
with any Beta, there will be some minor bugs. If you find
any, please let me know
-- thanks! If you are new to ClipSecure then you might like
to start with v1.1 and move to v1.2 after beta testing is
complete (what -- you don't you want to play with the new
features?). Beta 2 includes these
changes. Features are now locked;
only bugfixes will be done in the next few weeks until the
release of v1.2 final and the opensource code. Note
that this will be the last version from me :-)
Feb
13, 2003:
Bug report: a hotkey bug is
present in all versions to date. If you leave a hotkey blank
then hotkeys will stop working. This will be remedied in
the next beta. For now, the workaround is to ensure all
hotkeys are filled -- e.g. set an obscure combo for a hotkey
that you don't want to use.
January 21, 2003:
Update
to the Outlook issue below: It only affects Outlook emails
created as 'plain text'. HTML- and RTF-formatted emails
are unaffected.
January 19, 2003:
With ClipSecure v1.2 Beta I have solved the odd Microsoft
Outlook/Express problem of text not decrypting on receipt.
More
info here.
|
MENU |
|
|
|
|
The
CRC32 checksum for clipsecure.exe (v1.2.0.26) is:
A2989D15
The
MD5 checksum is:
82a0790af398cb48
9f608adac573637a
|
|
|
|
The
CRC32 checksum for clipsecure.exe (v1.1.0.30) is:
BC00AE67
The
MD5 checksum is:
42363a151368be8f
23ebf072d2dc3ba4 |
|
|
|
The
CRC32 checksum for the clipsecure opensource zip package (v1.0.2)
is:
1DF4E6EE
The
MD5 checksum is:
bed3ddbdbe6fff66
8b24369be6600a85
|
|
OTHER
USES FOR CLIPSECURE |
Web
email: Use ClipSecure to protect your Hotmail or
other web-based email accounts. Did you know that your
Hotmail emails are stored on your computer and can be recovered
by anyone with a file-recovery program? If you encrypt
the Hotmail email before clicking the Send button then,
if that page is later recovered from your harddrive, the
message body will be encrypted and unreadable.
|
Bulletin
boards: You may need to distribute a message in a
public forum instead of through private email. ClipSecure
ensures that you can post to any public forum knowing that
only those with the decryption key (and a copy of ClipSecure)
will be able to read the message. |
|
| Eric
Howes' extensive security page: Contains links
to info and programs from just about every area of encryption
and security. If you are looking for public-key cryptography
solutions like PGP, start here. |
| Web-based
RC4 encryption: Need to secure your text or email
but can't run any encryption software? (Using a locked-down
public computer, perhaps?) Just go to my RC4
online encryption page here. It's the same as GSG's, just
without the ads and obfuscation. |
| David
Barton's DCPcrypt package: Want to roll your own
industry-strength security application? David's excellent free
Delphi encryption package can make it happen. Just remember,
if you make money from it, donate to David's PayPal account! |
| Eraser:
An excellent free, open source file wiper and disk scrubber.
Comprehensive, schedule-enabled, mature. Useful for personal
privacy or anyone who needs to securely cleanse a PC's harddrive
prior to sale or disposal. |
MySecret
Blowfish Encryption Utility:
Written by David Ireland, MySecret.exe is a DOS-based freeware
utility that enables you to encrypt the contents of the clipboard
or disk files. It is small - 50 kB - and quick. It uses the
Blowfish algorithm to create a base-64 encoded text file that
can be easily transmitted over the Internet. |
CrypTool:
A fascinating free tool to analyse and explain both historical
and modern cryptography. Use it to examine ClipSecure's
output!
|
| Nullsoft's
SafeSex : a little virtual notepad from the makers
of Winamp for scribbling things down. It sits on your screen,
and on a click it will activate and give you access to your
notes. Blowfish, SHA1, and CBC encryption. |
| Extreme
Editor : A good, simple freeware text editor that
encrypts with Twofish and SHA1. |
Various
javascript stuff for useful with HTML and web
pages, e.g. calculating MD5 and SHA1, self-decrypting messages
in HTML/ javascript, etc.
|
PSST:
Simple, free, convenient no-frills Instant Messaging software
with strong encryption, for Windows and Linux. |
|
-
What is it? -
ClipSecure's
main features:
>
works with just about any application or source window that
can process the standard windows clipboard shortcuts of CTRL-A
(select all), CTRL-C (copy to clipboard), CTRL-V (paste from
clipboard)
> compression prior to encryption
> choose hashing mode from:
MD5, RipeMD, SHA1, SHA256, SHA512, Tiger
> choose chaining mode from:
CBC, CFB8bit, CFBblock, OFB, CTR
> choose algorithm from:
Blowfish, Cast256, MARS, RC6, AES (Rijndael), Serpent, Twofish,
IDEA, 3DES
> configurable one-hotkey encryption and decryption, or
control every step manually
> send decrypted text to source window, internal viewer,
or program of your choice
> encrypts/decrypts plain or rich text
> file mode with secure file wiping for internal processes
> password manager (encrypted to file) for one-click password
selection and individual cipher settings
> retain a session password
> 'hardcore mode' second-pass encryption
> user-specified config file -- registry not used
> command-line options for silent, traceless operation
ClipSecure
is a simple, secure, freeware text encryption utility that
operates with the Windows clipboard, and therefore can be
used within any text-based program
and most email clients. It uses many industry-accepted algorithms,
including the AES (Rijndael) standard, to provide maximum
security. Encrypt and decrypt text with one keystroke, or
manually control every step of the process. File encryption
is also supported.
ClipSecure was designed to be a small, fast, easy-to-use security
solution for those (like me) who prefer to avoid the size
and complexity of programs like PGP, and yet still have industry-strength
encryption.
Here's your first look at ClipSecure — the paragraph
above compressed and encrypted with the default AES algorithm
and a password of 'test':
6CPnKHPDoy6Sd+p/e2crR77pQXNZr9umnDGyE98l2Pfcqmp8lRcvwdhcpd4j0qNK52X3SwH0NS2W
OtypLte+Wn35SPxuRhixXZIWdB/FiuQacM0UFg5umM4od4+TVBQXMDX8xe7O9o9ElsjPh0ejvgM4
ZDYh9jbspJRAkNFCUbBCydtfeG8lXjDWSrajpyWb/hyFwcYpFHCokETexxNo
Practice using ClipSecure by decrypting the ciphertext!
—
ClipSecure, copyright © 2002 Andrew Ferguson
|
 |
Click
to reward the author of this free software. Donations gratefully
accepted. Account details:
|
-
What's upcoming in v1.2.1? -
v1.2.1
* For regular users, added option 'no messages' to disable
non-critical
popup messages (e.g. 'Using RTF', 'Using stored password',
'Using hardcore mode') during encryption/decryption. This
removes the small processing delays. It can occasionally
result in clipboard connectivity problems. If this happens
to you then switch messages back on.
* Fixed bug with sometimes displaying wrong password-list
ID when password is retained. The popup message now displays
'manual entry' when password is retained but not selected
from list.
* Fixed bug with 'confirm password' when used with a list
password. Confirming is not necessary when password selected
from list.
* Fixed 'internal viewer' so that it shows the beginning
of the deciphered text instead the end.
* Altered 'add sender tag' so that the info is built only
when the option is actively in use. This is instead of
building the string once at program startup. Hence, firewalls
will only trigger if this option is active -- and will
trigger every time now instead of just when ClipSecure
is started. If your firewall complains, just set a rule
to allow or block ClipSecure from doing its DNS lookup.
-
What's new in v1.2 Final? -
v1.2
Final
* Added Exit hotkey (quit program).
* Added 'no decompress' option to allow decrypting of
ciphertext
encrypted by earlier versions of ClipSecure where no compression
was
used. Note: from v1.2 on, plaintext is *always* compressed
prior to
encryption.
* Fixed bug with 'add sender ID' and Harcore Mode.
* Fixed bug with file mode and Hardcore mode. Hardcore
mode is for text
mode only, however it was incorrectly activating in file
mode too.
* Fixed bug with 'external viewer'. Decrypted text was
not being sent
when the target application was open and minimized.
* Fixed bug with 'sender ID' info where harddrive serial
number giving
wrong result.
* Fixed bug with 'set font' window appearing behind the
'on top'
internal viewer window (introduced in Beta 2).
* Fixed bug with non-standard DPI (e.g. 120 dpi) and fonts
(e.g. large,
extra large) where bottom edge was obscuring the password
manager.
Rewrote code to size those windows correctly. Removed
the redundant
workaround 'expandmanagerheight' (see Beta 2 info below).
* Updated ClipSecure icon. The outdated 'AES clip' icon
is gone,
replaced by a B&W yin-yang symbol.
>> Thanks to Michel Caroff for his assistance beta
testing this release!
|
-
Screenshots -
 
Microsoft
Outlook and Outlook Express users, please note:
Outlook
does not allow you to directly modify a received email.
If you select all or part of a received email containing
ClipSecure ciphertext, ClipSecure will correctly decrypt
the ciphertext to the clipboard, however it will fail to
paste it back over the original text (if you have the 'auto
paste over selected text' option active). To compensate
for this, try the following: [1] select the option to send
the decrypted text to ClipSecure's internal viewer or an
external editor of your choice, or [2] switch off 'autoselect
all text' in ClipSecure Options; hit the 'reply' button
to reply to the received email; in your reply window, select
the encrypted text; hit your decrypt hotkey -- the decrypted
text will be pasted over the encrypted text. Be sure to
delete the decrypted text from your reply once you have
read it -- or, manually hit CTRL+A to 'select all' prior
to encrypting and the whole lot will be encrypted again
ready for sending! |
|
