"Don’t ask users anything about keys, ever." Autoencrypt have nailed a way to get email encrypted autocrypt.readthedocs.io/en/…
1
1
1
An interesting idea, but limiting it to a single MUA per account is dangerously limiting.
2
my hunch (totally off top of my head) is they could have a QR code system to safely copy private keys between clients?
2
now I've read their spec, yes that does seem to be what they're planning for later levels. Maybe.
1
ah, so they'd all declare all of their public keys in each mail?
1
Eitehr that, or the MUAs negotiate a secured channel and share a private key around.
1
a key question is what archival abilities people expect. I'd expect to be able to download and decrypt old mails years later
1
Replying to @frabcus
Which would require that either over time your MUAs share the same key around (and it's backed up); or else that new MUAs reencrypt

Feb 17, 2017 Β· 4:54 PM UTC

1