[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] searching for beta users

From: admin
Subject: Re: [Sks-devel] searching for beta users
Date: Mon, 09 Dec 2013 13:37:35 +0100
User-agent: Internet Messaging Program (IMP) H5 (6.1.6)

Hi Stephan,

Thanks for your feedback. That's right, the user needs to trust the service. The toolchain is open source and you can review the JS code. How does the "End" in end-to-end looks like? Instead of using a mail plugin it's a website which runs JS code in your browser. Clear a PGP user knows how to encrypt a message on his PC, but if my non geek friends would like to send me an encrypted message without knowing PGP, I provide them one link and that's it. And how do you send an encrypted message without your PC? :)


Stephan Seitz <address@hidden>:

Hi there,

Am Samstag, den 07.12.2013, 13:27 +0100 schrieb PGP Key Admin:
We love PGP! :-)

so I do. But, why are you going to use it in such a ummm grotesque

If one's using that service he/she has to trust your service and
toolchain. It's completele breaking any ideas of end-to-end encryption.
More worse, any enduser without deeper knowledge of pgp or encryption at
all will be misguided and could think his communication be secured.
Indeed it isn't.
Don't get me wrong, I also see the need for it, even if it's only for
securing webgenerated forms.
Does it need to be a webservice like this?

We would like to make PGP as usable as possible for everyone.
With you can send encrypted messages to PGP users
and you can receive encrypted messages from non-PGP users. We are
using client side encryption and we can't decrypt the message.

How does it work? When your public key is added to a sks keyserver
just open the link:{email} or{key-id}

For example:

Many thanks in advance for your feedback.

Sks-devel mailing list

reply via email to

[Prev in Thread] Current Thread [Next in Thread]