@Keltounet Keybase was at least paying lip service to being PGP... and mostly I'm fishing for tools people to install (or have already), not services people can sign up for.
But I didn't specify that clearly, so thank you for your input. 😄
@HerraBRE not sure there is a simple answer to your question. There are tools floating around, either proprietary or open source that will do that, even cross-platform but things like key distribution & secure encryption are still hard things to tackle in all cases.
Interested in seeing a summary of your answers BTW (as we used to say on Usenet) :)
@HerraBRE BTW the real answer (or question) should probably more in the lines of "what is your threat model (aka who is it you want to protect that information from?" before asking what you want to do.
@Keltounet My tl;dr takeaway so far, is "centralized cloud services or 7zip, depending on which is a better fit."
Turns out 7zip LGPL'ed their core library, so they're widely supported and there are many implementations on all platforms.
And their crypto is, modulo implementation bugs, quite acceptable.
@jacek Do you have links where I can read more about this?
There are quite a lot of highly ranked posts on Hacker News when you search 7zip.
@jacek Thank you! I realized after posting that I should have just Googled... and did so.
According to this blog post, the time between discovery, report and a fix being released was IMO quite reasonable: https://landave.io/2018/05/7-zip-from-uninitialized-memory-to-remote-code-execution/
This does not seem like a huge red flag against the software, although for certain threat models the attack surface is probably unacceptably large. It's a complex tool.
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!