We‘ve been using S/MIME-based end-to-end email encryption at work for a long time now. It’s a bit of a hassle whenever new employees start, and every two years after that, but it’s manageable. Apart from that, it just works. Why is it never even considered by so many people?
4
1
11
More importantly, why is no-one working on making it less of a hassle? I know it doesn’t encrypt metadata, but it’s still so much better than most messaging services, let alone unencrypted, web-based email from a security perspective.
7
12
What problem does it solve for you?
1
Ensuring only the intended recipients can read mails I send? Not sure I understand the question
1
It's found in honest ignorance, e.g. wondering about the expected benefits when the other end is not themselves doing S/MIME
1
1
Replying to @lawley
I see. Good question. It only helps if you have the other party’s public key, e.g. because you’ve received a signed mail from them before or can get it from a trusted directory. Workable in company settings. But all mail clients handle this quite gracefully.

Jan 22, 2021 · 9:05 PM UTC