Proton, the Swiss privacy-focused software maker, says it has received a notice of a "possible block" of Proton Mail in India after the service was used Proton, the maker of privacy-focused email service Proton Mail, has received a notice of "possible block" in India and condemned the action.
Yes, there’s no other implementation I know of for provider-to-provider encrypted email. O365 is very similar. Recipients can then reply back too and the Proton user receives it directly.
Whatever your favorite (and probably shitty) proprietary or open source messaging service - not everybody uses it. But hey, everyone has email, so let’s kill that.
BTW since you said encryption is important to you: your walled-garden messaging service has a much easier time profiling you and your friends than they would in a heterogenous environment like email. They don’t need the content anyway, just metadata.
They don’t need the content anyway, just metadata.
ProtonMail uses PGP encryption to encrypt emails, which means your meta data, including subject line is vulnerable to data collection. Also there is no forward secrecy with current PGP standard. See quotes from below:
We have built Proton Mail with PGP fully integrated, … All messages between Proton Mail users are automatically end-to-end encrypted.
PGP (especially for email) exposes much more info to outside party than any good communication protocol, like the signal protocol or OMEMO used by XMPP.
No, they can’t since I don’t have a Google mail address. Even if I had, they’d have a harder time building a social graph when I communicate with others outside of Gmail.
That’s what s/mime does. If it were as easy to get personal certs as it is to get server certs through letsencrypt, everyone could easily sign and encrypt mail.
I can certainly do it anyway, but you’d have to trust my self signed cert.
That said, it’s pretty rare to find relays these days that are not using tls for transport, so there’s that.
Can we get away from email?
It’s not a secure form of communication anyway. I want my messages to be e2e encrypted so I know I am the only one that can read them
Congrats, you just invented ProtonMail
Its not encrypted when 99% of your contacts aren’t on Proton.
You can encrypt it for non-Proton users very easily.
oh? i have friends that use protonmail and i’ve asked them to do it. no one has succeeded yet
Yep, it just has you set a password, confirm it, and even set a hint if you want. Works on web or mobile.
you’re talking about sending a link to a password protected message?
Yes, there’s no other implementation I know of for provider-to-provider encrypted email. O365 is very similar. Recipients can then reply back too and the Proton user receives it directly.
pgp is true end-to-end
Then use Proton Mail
What a stupid thing to say.
Whatever your favorite (and probably shitty) proprietary or open source messaging service - not everybody uses it. But hey, everyone has email, so let’s kill that.
BTW since you said encryption is important to you: your walled-garden messaging service has a much easier time profiling you and your friends than they would in a heterogenous environment like email. They don’t need the content anyway, just metadata.
ProtonMail uses PGP encryption to encrypt emails, which means your meta data, including subject line is vulnerable to data collection. Also there is no forward secrecy with current PGP standard. See quotes from below:
https://proton.me/support/how-to-use-pgp
https://proton.me/support/proton-mail-encryption-explained
PGP (especially for email) exposes much more info to outside party than any good communication protocol, like the signal protocol or OMEMO used by XMPP.
Oh no, profiling. Google can read your emails directly
No, they can’t since I don’t have a Google mail address. Even if I had, they’d have a harder time building a social graph when I communicate with others outside of Gmail.
you can e2e encrypt emails though?
And then just go PGP if you want even more security.
Yet everyone sends me one time passwords in plain text
That’s what s/mime does. If it were as easy to get personal certs as it is to get server certs through letsencrypt, everyone could easily sign and encrypt mail.
I can certainly do it anyway, but you’d have to trust my self signed cert.
That said, it’s pretty rare to find relays these days that are not using tls for transport, so there’s that.
autocrypt has been around a while. get your contacts to use it.