惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

酷 壳 – CoolShell
酷 壳 – CoolShell
GbyAI
GbyAI
SecWiki News
SecWiki News
Project Zero
Project Zero
C
Cisco Blogs
Simon Willison's Weblog
Simon Willison's Weblog
P
Privacy International News Feed
D
Darknet – Hacking Tools, Hacker News & Cyber Security
Scott Helme
Scott Helme
A
Arctic Wolf
Security Latest
Security Latest
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
P
Privacy & Cybersecurity Law Blog
Apple Machine Learning Research
Apple Machine Learning Research
T
Tailwind CSS Blog
The Hacker News
The Hacker News
T
Tenable Blog
雷峰网
雷峰网
有赞技术团队
有赞技术团队
V
V2EX
C
CXSECURITY Database RSS Feed - CXSecurity.com
T
Threat Research - Cisco Blogs
T
Threatpost
AWS News Blog
AWS News Blog
L
LINUX DO - 热门话题
Application and Cybersecurity Blog
Application and Cybersecurity Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
S
SegmentFault 最新的问题
月光博客
月光博客
Spread Privacy
Spread Privacy
S
Secure Thoughts
宝玉的分享
宝玉的分享
博客园 - 三生石上(FineUI控件)
Forbes - Security
Forbes - Security
T
The Exploit Database - CXSecurity.com
G
GRAHAM CLULEY
The Last Watchdog
The Last Watchdog
Y
Y Combinator Blog
I
Intezer
博客园 - 【当耐特】
B
Blog RSS Feed
Attack and Defense Labs
Attack and Defense Labs
I
InfoQ
博客园 - 叶小钗
Cyberwarzone
Cyberwarzone
V2EX - 技术
V2EX - 技术
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Hugging Face - Blog
Hugging Face - Blog
H
Help Net Security
C
CERT Recently Published Vulnerability Notes

Posteo.de - Newsroom

Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de Email green, secure, simple and ad-free - posteo.de
Email green, secure, simple and ad-free - posteo.de
2017-12-22 · via Posteo.de - Newsroom

New: Easy email encryption with Autocrypt and OpenPGP header

Created at 21.December 2017, 18:30 | Category: Info

Dear Posteo users,

Starting this week, we are now supporting the new encryption method Autocrypt, which will soon simplify real end-to-end encryption in email applications. Posteo customers will be able to use the technology as soon as email applications supporting Autocrypt are available.

The trendsetting method is being integrated into popular email applications such as Thunderbird with Enigmail and K-9 Mail for Android. New versions of these email applications (Enigmail 2.0 and K-9 Mail 5.3) will support Autocrypt.

When email senders and recipients are using email applications compatible with Autocrypt, they can use end-to-end encrypted communication with no additional effort: the email applications automatically encrypt emails with PGP prior to transmission while exchanging public keys automatically in the background. The manual exchange and management of keys – which users often perceive as complicated – is becoming superfluous: Prior to the first encrypted communication, a regular empty email (without content) is sent. With this, the key is transferred in the background. Henceforth, messages can be encrypted automatically.

Autocrypt is a free and open standard, works with all email providers and uses real end-to-end encryption with the private key always remaining with the user. That’s one of the reasons why we support the method.

Why we already support Autocrypt and protect keys additionally

A first version of Autocrypt is being integrated into popular email applications. The involvement of email providers in the key exchange has not been intended yet. The provider sided support generates benefits for the end user which we want to showcase with our early implementation.

It is very important to us that Posteo customers will be able to use Autocrypt from the very beginning – as comfortable and secure as possible.

Our contribution to comfort:
Thanks to Autocrypt, email applications can soon automatically exchange public keys within the email headers. Our provider sided support makes it possible for an Autocrypt compatible application to receive a public key even if the sender uses an email application without support for Autocrypt. If the sender’s public key is available to us, we will take over that task: Posteo adds the Autocrypt header prior to every email transmission. Your communication partner is able to reply encrypted – without a manual key exchange.

Your current public key is transmitted inside the Autocrypt header with every sent email. Therefore, there is always a copy of your current key available in the applications of your communication partner – without manual key management.

Our contribution to security:
We provide an additional layer of security with digital signatures (DKIM). For Autocrypt the use of DKIM has not been planned yet. Our provider sided DKIM-signature makes it impossible for a public key to be invisibly manipulated by a third party during transmission. An Autocrypt header attached by your local email application is signed with DKIM by Posteo. DKIM-signatures occur only when the sending address matches with the sending mailbox.

How Autocrypt is integrated into Posteo

Many Posteo customers have published their public PGP key in the Posteo key directory. If these customers send an email, we add the Autocrypt header into the email. This header contains your public key. If your email application adds an Autocrypt header by itself, this header will not be changed and no additional header will be added.

- Posteo customers who additonally activated the Posteo inbound encryption using their public PGP key want every incoming email to be encrypted. This information is added to the Autocrypt header as well. That way, email applications compatible with Autocrypt will know that a recipient at Posteo wants an encrypted reply.

- In addition to the new Autocrypt header we also add the so called OpenPGP header, which informs the receiving email client on where it can find the public key. With this, the URL for the download from the Posteo key directory will be transmitted. The OpenPGP-header will be signed with DKIM, too.

What can you do?

In day-to-day life, encrypted communication with Autocrypt will work without your involvement. The manual exchange and management of end-to-end encryption keys becomes superfluous. All you need is your personal PGP key pair.

- Install the upcoming major versions of Enigmail or K-9 Mail as soon as available.

- If you already own a personal PGP key pair for your Posteo email address, we recommend publishing your key in our Posteo public key directory. Then your public key will automatically be added to the header of every email you send. We explain how to publish your public PGP key at Posteo in this help article.

Security recommendations for implementing Autocrypt:
In our view, the automatic exchange of public keys in the background should always be accompanied by further security measures. We recommend other email providers to sign Autocrypt headers with DKIM. Application developers should consider further measures to secure the key and verify existing DKIM-signatures. Additionally, end users should be notified by their email applications if a public key is replaced with a new one or if a setting, that an email should be encrypted or not, is changed by an Autocrypt header. In this way, a possible manipulation by third parties can be detected.

Best regards,

The Posteo team