Digital legacy the home made version

 

iStorage datAshur PRO 4GB Secure flash USB drive

For a long while since my brush with death, I have been thinking about my digital legacy as most of my stuff is digital. I know its not something most people think about but in the same way most people don’t think about their will till something major happens or its too late.

Digital legacy is in that place right now where there are companies which will do it for you but the trust model seems broken to me. Also they tend to need everything to be in one place/platform rather than the real way people use digital technology today and into the trustless/diy/open future.

With this in mind, I checked out a few different options and the one which came up consistently was Hereditas.

Hereditas, which means inheritance in Latin, is a static website generator that builds fully-trustless digital legacy boxes, where you can store information for your relatives to access in case of your sudden death or disappearance.

For example, you could use this to pass information such as passwords, cryptographic keys, cryptocurrency wallets, sensitive documents, etc.

Herditas is neat and the code is open source allowing anyone to investigate it. But as its alpha software I always felt a bit uneasy about using it for my digital legacy because it felt a bit too barebones (although I did sign up for Auth0).

I looked for alternatives such which also used the method of trustless, zero-knowledge and verification, but found little. So decided to try setting something up myself based on what I already have and use.

It was about the same time the lastpass security breach happened and although I’m not using a online password manager started thinking if there was a way to combine the both in a safe way.

So what did I do?

First I bought these secure USB drives and of course changed the passcode to something long and unique.

Then made a copy of my keepass database (my password manager) on to the USB drive along with my  Letter of wishes, a readme file and other bits and bobs. The database is locked up with a very long and difficult master password. That password is stored inside another online password manager, bitwarden which includes the feature of emergency access. I have already set up family members and close friends using this feature. Meaning only a few selected people can access it once I don’t reject their access request.

Once someone gets access to the bitwarden account, they would still need access to the database file, which is on the secure keys. Then to top that,  keepass has the option of a key file which can look like almost any file including ones on the secure USB stick. Its not elegant but I can’t see many flaws and it works in a simple way which was explained to my family.

I’m still experimenting with this all but been thinking a better option is to use another encrypted filesystem or Certs for the keepass 2nd authentication. Of course that file doesn’t have to even sit on the secure USB drive at all, as I’m considering buying and using more FIDO2 keys and using that instead.

Looking Herditas again, I quite like the idea of a static website on the secure website which could make a better solution that a readme file. It would be great if Herditas could actually run on/offline

Thoughts and comments are welcomed…

Is there a major flaw which I’m missing or is something which could work?

Update Tuesday 24th Jan

There has been some discussion on the fediverse about my post and I wanted to add some more details. Some people have asked why bother and I wanted to address some of them.

The scenario of death is a lot clearer and the death certificate will unlock a lot of things, however its worth noting some EULAs from the likes of dropbox need explicit consent before they will provide access. I’m also using the likes of Google, Facebook, etc’s legacy contact support.

The scenario I alluded to, was when I was in in ICU for 3-4 weeks and my family and friends needed to sort out my life when I was buying a new flat. I was lucky but I could have lost the flat. Yes its unique but a lot can happen when you are temporarily or even permanently out of action. Permanent disability is possible and providing access in a safe way, can make a lot of difference. I also think my thoughts still works in this case too.

Public Service Internet monthly newsletter (Feb 2021)

Survillence everywhere
Photo by Matthew Henry on Unsplash

We live in incredible times with such possibilities that is clear. Although its easily dismissed, seeing the de-platforming and even the royals snubbing social media.

To quote Buckminster Fuller “You never change things by fighting the existing reality. To change something, build a new model that makes the existing model obsolete.

You are seeing aspects of this the privacy first search engine duck duck go surpassing 100 million daily searches, the move to Signal messager from Whatsapp causing it to fall over temporarily and Facebook forced to rethinking their strategy.


Its the Internet’s health check up time!

Ian thinks: Mozilla’s well researched look at the state of the internet is a one of those reports which spurs thought and action for the coming year. Its been a tricky year with lots of up and downs, nicely documented in this massively detailed report/playbook. You might recognise someone in the report.

How can we achieve public spaces online?

Ian thinks: on 11-12 March a online conference by a number of partners including BBC R&D bring together organisations and vendors who are interested in the development of a public stack in line with the principles of democratic, sustainable etc. This is all part of the Mozilla Festival 2021 which is in Amsterdam for the next 3 years. Tickets are now available for Mozfest. and the publicspaces conference.

The new state of the self sovereign internet

Ian thinks: A deep dive but also accessible look at the current state of decentralised technology like self sovereign identity. Maybe one of the better summaries.

Some of the challenges to decetralisation

Ian thinks: The post has quite a few errors within it, like how they keep referring to Mastodon as a single network and missed the memo how Gab removed themselves off Mastodon. BlueSky sounds only slightly interesting, but the core of this post is focused around the risk of extreme groups using decentralised technology.

Imagine a Buddhist-inspired AI

Ian thinks: A truly real rethink of AI ethics based around Buddhist ethos is something worth pursuing. There is a lot of modern life which could be re-thought with a eastern view.

Do Facebook really think we won’t notice?

Ian thinks: Will the name change from Libra to Diem make any difference? Its still got Facebook behind the scenes and almost all the original backers have left.

The future of shopping faces the same dilemma as everyone else

Ian thinks: Its later in the video when Ian talks privacy and luxury but also luxury and personalisation. Its good to hear these discussions happening in the retail world too.

(How) will Public Service survive Silicon Valley?

Ian thinks: Although this well written paper focuses on public service broadcasting, I would consider the wider question of publicservice full stop.  Its clear the likes of Uber, Airbnb, Amazon, Facebook etc are aiming to replace public utilities  Of course I think so but publicservice needs to double down on things which break silicon valley

How eXistenZ, Pizzagate, Qanon and Augmented reality all fit together?

Ian thinks: Mark Pesce is interviewed by Douglas Rushkoff for team human, and its quite a fascinating interview linking all these topics together.

Ring doorbells get on the E2E train

Ian thinks: Well its about time, but expect more E2E and Zero-knowledge buzz words to be thrown around this year. Question will always be, are they actually doing what they say they are? Looking at you Zoom.


Find the archive here

Cloud storage advice

We were discussing cloud based solutions in the office today, now that Dropbox offers double the storage for Pro users. I now have 130.25gigs of storage (up from 78gig) to sync and play with believe it or not, thanks to everyone who used my referral codes (mildlydiverting, seansines and djadams) plus HTC for the extra. We got into the topic of what I use myself?

I use Dropbox for general stuff and syncing across all my different devices including Ubuntu and Android tablets and phones. However I use Spideroak for actual machine backups…

Why?

Well I like what Spideroak do about security and privacy. Compare this to Dropbox’s terms… and what happened last year!

This was confirmed when I heard Steve Gibson’s Security now on Cloud Solutions.

Cloud Solutions
After catching up with the week’s news, Leo and I examine ALL of the various cloud-based synchronizing, storage and backup solutions we could find. I survey each one in turn, and Leo chimes in with his own personal experience with many of the offerings. We conclude that SpiderOak looks like the winner, though Jungle Disk is still in the running.

Zero knowledge encryption is very useful and although I know theres way to encrypt in Dropbox (I actually have considered using them myself for somethings) I don’t really want to encrypt and decrypt on my Android device each time.

For me right now, there quite different parts of the market (although Spideroak do have dropboxes too) and I’m happy with that for now.