![]() ![]() ![]() When the user, and all recipients, enabled “Autocrypt mutual mode”.When the user chooses to encrypt (with a single click).Since K-9 Mail 5.400, encryption will be enabled in exactly these three scenarios: ![]() Please bear with me and read on for an explanation.īefore K-9 Mail 5.400, encryption using OpenPGP was enabled “opportunistically”, which meant that whenever end-to-end keys were available, the message would automatically be encrypted. However, I believe that this is the only way forward for usable e-mail encryption. I realize this breaks the workflows of a couple of users, for which I apologize. In keeping with this idea, non-consensual encryption by default has been removed as a feature. Consensual Encryption by DefaultĪll of the changes mentioned above work towards getting out of the user’s way with the crypto as much as possible. If all recipients have verified keys in OpenKeychain, this will still be indicated by three green dots next to the lock, but generally the key status is featured much less prominently than before. The “three lock states” are also gone, recipients either can be encrypted to (small lock) or they can’t (no lock). The most important changes, I think, have been made to message composition.įirstly, the crypto dialog is no more, encryption can instead be enabled or disabled with a single click on the lock. The warning overlays that were previously displayed when a message was deemed insecure are also gone Those messages now simply don’t get a green lock. In message view display of crypto status has been greatly simplified - either a message was securely encrypted (green lock), encrypted with problems (grey lock with an X), or hasn’t been encrypted at all (grey struck-through lock). Most importantly, keys are now transparently exchanged between compatible clients, paving the way for truly transparent key management with no need for user interaction.Īnother big change happened in the user interface: In K-9 Mail version 5.400, OpenPGP encryption was changed to adhere to the Autocrypt specification. This one focuses on Autocrypt, and in particular “encryption by default”. This blog post is the third in my series on design decisions made in the OpenPGP support in K-9 Mail.įollowing my first post on signed-only mails, and the second one on encrypted-only mails. ![]()
0 Comments
Leave a Reply. |