Skip to main content

Computer security and the lack of computer security is a fundamental issue that underpins much of how the Internet does (and doesn't) function. Many of the policy issues that EFF works on are linked to security in deep ways including privacy and anonymity DRM censorship and network neutrality.

EFF works directly on a wide range of security issues including increased deployment of cryptographic protocols through projects like HTTPS Everywhere and Certbot; improving the security of those protocols with the SSL Observatory; offering legal assistance to researchers through our Coders' Rights Project; offering practical security advice to activists through the surveillance self-defense and surveillance self-defense international projects; directly auditing open source codebases; and working on the development of new security standards.

Security Highlights

Encrypting the Web

The web is in the middle of a massive change from non-secure HTTP to the more secure HTTPS protocol. All web servers use one of these two protocols to get web pages from the server to your browser. HTTP has serious problems that make it vulnerable to eavesdropping and content hijacking. HTTPS fixes most of these problems. That's why EFF, and many like-minded supporters, have been pushing for web sites to adopt HTTPS by default. As of 2016, about half of all web page visits use HTTPS. This is a big improvement over the past, but we still have work to do.

Coders' Rights Project

EFF's Coders' Rights Project protects programmers and developers engaged in cutting-edge exploration of technology. Security and encryption researchers help build a safer future for all of us using digital technologies, but too many legitimate researchers...

Security Updates

Phone Privacy Laws May Change Under Trump

Nate Cardozo, an attorney for the Electronic Frontier Foundation, pointed out that President-elect Trump's pick of Alabama Sen. Jeff Sessions- a leading critic of Apple during its' spat with the Justice Department - to be the next Attorney General could signal a willingness to go after encrypted devices, although it...

Obscure legal change expands government hacking powers

The FBI, Department of Homeland Security, and other US government authorities now require only the signature of a single judge to hack criminal suspects' computers and personal devices regardless of where they're located. "We don’t have any confidence whatsoever that the FBI is not going to mess it up and...

New rules helping the feds hack computers to begin at midnight

Changes to Rule 41 of the Criminal Procedure will make it easier for law enforcement to get warrants to hack computers. The new provisions were backed by the Justice Department and approved by the Supreme Court and were set to automatically start on December 1 without congressional action. “Congress has...


JavaScript license information