Technology Research and Development
EFF's technology development and research projects aim to improve the rights of free expression, security, and privacy on the internet. All of our work is released under free and open source licenses such as the GNU General Public License or Creative Commons licenses. We welcome your code patches and other contributions!
The SSL Observatory is a view of the state of HTTPS deployment in the IPv4 address space. The Observatory has exposed insecure behavior by certificate authorities, the huge number of CAs and intermediate signing certificates in use on the internet, surprisingly widespread cryptographic errors, and more.
Panopticlick shows how easy it is to uniquely identify browsers on the web, even without cookies.
TOSBack, was a project to keep track of changes in web application providers' Terms of Service documents, and shows the differences. It subsequently became part of the Terms of Service; Didn't Read project.
Switzerland is a (no longer maintained) project to detect violations of network neutrality and of connection integrity by capturing and comparing packet traces of network traffic between two computers. If the receiver sees something different than what the sender sent, Switzerland will discover this and alert users to the difference. pcapdiff compares two packet captures, and we have a whitepaper on Detecting Packet Injection.