Proton Mail started relocation out of Switzerland due to changes in Swiss legislation

fmc000 said:
Whatsapp is already encrypted end to end, with no backdoors. Unless you know something that no one else does.
Click to expand...
can you provide your own private key in whatsapp ? eu and uk are requesting backdoors righr now. in a lot of hw devices you cant bring your own key either. they are random in theory but you cant verify that
 
covacat said:
can you provide your own private key in <whatever> ?
Click to expand...
The full authority over private keys is essential. Let's have a look at Proton's key management:
  • To make sure you can always receive your emails on Proton Mail using this OpenPGP key , we require that all imported keys have no expiration date set.
  • Proton requires that all imported keys contain a single user ID that uses the same email address as the Proton Account the key is being imported into.
  • Proton requires imported keys contain at least one subkey that can perform encryption (some subkeys can be only used for signatures).
  • We also require that imported keys signal support for AES-256 as a symmetric cipher, SHA-256 as a hash function, and ZLIB as a compression function.
But when you upload your key you are prompted to enter the password of that key. To me that's an absolute no-go.
If you then export your uploaded key from Proton it uses "Signature Salt Notation", preferring MDC over AEAD. Why? Hints from persons with knowledge welcome.
 
You must log in or register to reply here.
Back
Top