SecureData

Various Methods to Protect your Data

• Set your Newton Password. Some ideas:

  • "I have mine set to log in once per day. This means if I lose it somewhere, after a day, the finder is locked out. This seems like a good balance to me, and isn't to big a pain." (Marty)
  • "My owner info is also password protected, but I don't remember if that's a part of the main password feature or not... But in any case, I think it's a good idea..." Jon - reply by Dan: "Yes that is a standard part of the Newton OS and yes it is the same password. Unless you have a package installed that changes that. It is useful in that someone can't change the owner data without the PIN. If they manage to get in, they can of course change it."
  • "The built in PIN feature is a good start, but there are ways around that. So the best method is still encryption. One thing about the PIN feature, with so many people not even knowing what a Newton is, or how to use it, I doubt they would know how to get past the PIN. So unless they already had one, the only thing they could do with it is wipe your data (IF they figured out how to do that... removing the batteries won't do it in a 2000, but they probably would figgure out how to remove all the batteries in a earlier model and wipe it that way). But probably your data would be safe from unauthorized use, however to be 100% safe, use encryption." Dan

• Newtie come home!

  • "In the owner card, I put the text "reward for return" in the phone extension field, and my phone number where it belongs. Then I tell my newt to ask for a passcode on reset and if a passcode hasn't been entered in 24 hours. (Passcode every time the newt wakes up is just a bit excessive; I can handle once a day.) The passcode screen displays the name and phone number (plus extension) from the owner card... so if I lose the newt somebody who picks it up and turns it on will see the passcode screen, and my name and phone number and "reward for return"." (Rhonda)
  • Questions: "Since I 'lost' quite a few Newts in the last years, I'm extremely interested in this... I entered 'PHONE FOR REWARD !' in the extension field, but I'm wondering how I can get rid of the little 'x' between the phone number and this message. Also wondering how I can get the number displayed in international formatting (as in + 31 (0)70 345 etc. in my case). In a weird way the owner info doesn't even seem to know where I am, while the Names application is..." (Robert)
  • The app IfFound by Arnold Kim of Nemesis Productions "produces a tap-dismiss Owner Info screen which runs on startup. The idea is not to provide a security layer similar to PIN entry, but to help your Newton find its way home should you lose it."

Applications that Help Securing Your data

• DinoCrypt 1.1 by DinoWare's Marcel Strittmatter: "Simple package which allows Newton users to en- and decrypt text on the MessagePad. Users simply select the text to encrypt, then click Encrypt Selection on the Button Bar. Decryption is just as simple, and is password enabled. In the latest release, the window where the decrypted text is shown closes after 20 seconds automatically." (Planet Newton -- Note: Dinoware hosts V1.0, PlanetNewton claims to host 1.1.
• GeekSafe was written by Michael Pohl and improved by Laurent Daudelin. There's a companion package by Laurent called DragNDrop GeekSafe v1.0b1 based on DragNDropNames by Adam Tow.
• "The Fish is an encryption utility for the Notes application for Newton MessagePads. It can encrypt and decrypt any note, providing a secure data storage for sensitive data by using the proven Blowfish algorithm. The goal is an application which is very easy and fast to use." (From http://www.40hz.org/TheFish)
• Nick's Fort Knox|
• NoPasswordInk 2.0 -- "NoPasswordInk turns off the pen's ink when you enter the password into the Newton's builtin password screen. This allows for more security because you don't have to worry about people looking over your shoulder while the Newton translates the ink into your password."
• Passkeep 1.5 for NOS 1.x and 2.x comes from Sine of the Times: "The software's easy and consistent interface make password storage and retrieval as painless as possible. Along with passwords, users may store software serial numbers to assist when calling tech support or upgrading."
• SBM Secret 2.2 -- "Add the ability of encrypting to the 'Notes' application and/or to HyperNewt."
• SBM Secret Cards 1.0 -- "Protect storage cards using a password. The protection will remain intact even if you remove the program Secret Cards or if you insert the storage card in another Newton OS device."
• SBM Secret Names 1.0.4 -- "Add the ability of encrypting to the 'Cardfile' application."
• SuperNotePad by Standalone Software: "Does anyone know how strong the encryption is with SuperNotepad? I am sure TheFish would be better, but would SuperNotepad it be "good enough"?" Dan
• Catamount Software's Timelock "TimeLock allows you to have the PIN set to Always require password without having to enter it everytime you turn on your Newton. You choose a delay setting then you can turn off an on your Newton as often as you like within that delay. After the Newton has been off for longer than the delay then it will require you to enter the PIN again. This makes working with your Newton thru out the day less cumbersome." -- Thanks for the pointer, Dan!
• ??? "I seem to remember a app I saw somwhere that could encrypt soups. So very sensitive data you could encrypt, then decrypt it when needed, even if the original app that created the soup did not support encryption." Dan

Ultimate Security, Tech-Ed Style

"I also have ID tags in several places including inside the PC card slots incase someone finds the ones on the outside and pulls them off.

As far as the data on the Newt goes, all password and notes and names are stored internally. All 3rd party apps are on one card (32mb)and all my books are on a second card (16mb). All passwords and secure information is stored in GeekSafe. Sure, it's not encrypted, but since most people wouldn't know how to navigate the Newt anyway, I feel relatively safe with most of my non-secure data.

So, with all data being stored internally, I have a series of 4mb cards that I use for backing up the internal stores. They are dated and color coded. 2-3 times a week I create a backup using the now classic "grandfather, father, son" format. Plus I have a spare 4mb card at work, and one in my car and one I carry with me. Additionally, I have a backup on my 16mb book card (the one I use for Newt books) This way, no matter where I am, I will have some kind of backup available to me if there is a problem. Additionally, I have a spare Newt in case there is a physical issue. Call me paranoid, but I am a firm believer in backups, and backing up to a memory card seems to be the safest method!" (Tech Ed)

"Geeksafe is password protected and I also use a code for all my secure information (its a simple character replacement... kinda like "Pig Latin", but I've been doing the conversion since the '70s for all my computer logins it's automatic to me now... but will not work for anyone who doesn't have the transpose key calculation I have in my head...." Ed again

Additional Resources

• "Geheimnisse und Verschlüsselungen" ("Secrets and Encrypting") is a very good review by Ronald Ramlow of eight Newton data protection solutions (german only, published 1998?). He shows that a bunch of the apps are not very secure or may even damage your data. Favorites are SBM Secret, Nick's Fort Knox and SuperNotepad. The weakest programs are NDcrypt Version 2.0, DinoCrypt, PrivateAccess 2.1 and the original GeekSafe 1.02.
• Clay Irving's Newton Reference lists 11 security-related apps, among others MasterKey (dead link), nCrypt, PassKey (dead link), PrivateAcess (dead link), Protektor (dead link). -- If you happen to have any of the apps emntioned, pls. upload to UNNA and enter link here.

Note: Originally inspired by this thread on NTLK.

HomePage : HowTo: SecureData