what's an encrypted mail service?

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

what's an encrypted mail service?

Eliza
Does it mean messages get encrypted in tranfer process and message storage is encrypted in rest?

Why so many encrypted mail providers like protonmail, tunanota say they have privacy advantages than traditional mail providers (for example, gmail)?

Thanks for any guide.

Eliza
Reply | Threaded
Open this post in threaded view
|

Re: what's an encrypted mail service?

Viktor Dukhovni
On Mon, Dec 30, 2019 at 10:28:03AM +0800, Eliza Chan wrote:

> Does it mean messages get encrypted in transfer process and message storage is
> encrypted in rest?

That's a plausible definition, but transfer may not always be encrypted,
since the provided typically would not refuse inbound mail that did not
use STARTTLS.  The responsibility to use STARTTLS falls on the SMTP
client.

> Why so many encrypted mail providers like protonmail, tunanota say
> they have privacy advantages than traditional mail providers (for
> example, gmail)?

If they also encrypt messages at rest, then it is harder for
unauthorised parties to access message plaintext.  But you can
read their documentation for any details that substantiate the
marketing blurbs.

--
    Viktor.
Reply | Threaded
Open this post in threaded view
|

Re: what's an encrypted mail service?

Wietse Venema
In reply to this post by Eliza
Eliza Chan:
> Does it mean messages get encrypted in tranfer process and message
> storage is encrypted in rest?

Every provider can TLS encrypt your SMTP mail in transit, but the
provider still has access to the plaintext that goes into and that
comes out of TLS-over-SMTP.

Many providers encrypt mail at rest. The main differentiator is who
can decrypt your mail at rest.

        Wietse