Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

ProtonMail has IMAP via ProtonMail Bridge, which handles the decrypt/encrypt step locally - not sure how else it would be implemented. Ideas?


they offer a web client, so, they already have decryption keys for your email. They should just offer IMAPS like everybody else and stop pretending they couldn’t read your email if they wanted to.


They say[1] they only store subject line and to/from addresses accessible to them.

This should be sufficient to implement a web client which does client-side decryption of the content, in which case they indeed could not read the contents.

And they do have the IMAP bridge, I've been using it for a year with Thunderbird without any issues so far.

[1]: https://proton.me/support/proton-mail-encryption-explained


The client-side decryption works by using a key sent by protonmail. Proton has this key, because they sent it to you.


You can import your own encryption key though.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: