The ideal mission of our project was to target the technically unsophisticated Internet user. We wanted a way to inform users of risks they may not otherwise be aware of, and ultimately give them the option of mitigating their risk.
In practical application, our goal is to tell our users when they are sending information insecurely, and ask them if they prefer to change to an encrypted connection.
To do this, we transformed a Raspberry Pi into a router and added a second wireless card. The second wireless card advertises a network to which our clients will connect, allowing us to monitor the information (before it reaches the user if the traffic is incoming, or, in the case of outgoing traffic, before the user sends it on). Using a bash script, we are able to detect which traffic is unencrypted and then display it.
This was a first step to a larger mission of informing users when they may be engaging in risky behaviour on the Internet. For example, our aim is to inform users when they provide passwords in plain text, give a credit card number over an insecure connection, or send a social security over email. While there are currently tools in place to do this, we don’t feel they are simple enough, accessible enough, or provide realistic alternatives for the user. That is our eventual end-goal…..
Each Friday is PiDay here at Adafruit! Be sure to check out our posts, tutorials and new Raspberry Pi related products. Adafruit has the largest and best selection of Raspberry Pi accessories and all the code & tutorials to get you up and running in no time!