Thunderbird and end-to-end email encryption – summary of responses and proposed policy
vb at pep-project.org
Tue Sep 1 17:02:23 UTC 2015
On Tue, Sep 01, 2015 at 06:30:47PM +0200, Patrick Brunschwig wrote:
> OpenPGP, such as OpenPGP.js (http://openpgpjs.org/) or the Google E2E
> libraries (https://github.com/google/end-to-end).
Before you're discussing that: please keep in mind that we do a full
automation of everything which is needed to have end-to-end encryption
without any user interference.
For that case, we automate, too, that you have the same key and trust
base on one desktop for all programs using it. And that means, if you
less features (GnuPG has a lot!) and less robustness against new attacks
(i.e. https://www.tau.ac.il/~tromer/handsoff/ ) but also less integration
into other apps just using the same infrastructure. Your users then have
to do things twice again (which is really bad).
Volker Birk, p≡p project
mailto:vb at pep-project.org http://www.pep-project.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Size: 801 bytes
Desc: not available
More information about the tb-planning