opentechfund / secure-email Goto Github PK

Hello,

Link for GhostMailWeb is broken, it's github profile seems to be empty tho : https://github.com/ghostmail/
I didn't find any trace for a new profile, any idea if service is dead ?
Thanks :)

https://www.confidantmail.org/

https://www.ghostmail.com

Not sure in which category, but you might want to consider adding http://shazzlemail.com/ ?

http://www.wired.com/2014/09/oxguard/

http://pep-project.org/

it is peer to peer out of band key validation. plugin for each MUA, starting with outlook. written in C#

DarkMail plans have changed a lot lately. Some clarifications it would be good to add:

• For key validation, DarkMail is using a modified form of DNSSEC/DANE. Essentially, provider endorses user keys. There was some mention in the talk very briefly about a forward hash in the key format, so that an auditor could detect if they have seen all the endorsed keys, or detect if provider tries to split the endorsement chain. Not perfect, since a provider might still alter the chain, but it reduces their opportunities to do so.
• For meta-data protected routing, DarkMail is using "onion headers", where sending relay doesn't know recipient and recipient relay doesn't know sender. This breaks down for single provider situations, but is a valid way to go.
• DarkMail server supports both SMTP and DMTP (their new SMTP replacement), switching between the two.
• DarkMail keys are like OpenPGP, but redesigned.

https://lavaboom.com currently has this displayed on their page:

Lavaboom has shut down

With regret we have to inform all of our users that Lavaboom has shut down its services on August 27th. The [email protected] e-mail address has been removed.

I am sorry for letting you down.

Maybe it should be removed? Or moved to a historical section?

https://parley.co/

no website available =/

Service claiming to provide user-friendly end-to-end encrypted email "with no stored meta-data"

https://scryptmail.com/
https://github.com/SCRYPTmail/scryptmail

https://www.peerio.com/

PRISM-PROOF is a project of email infrastructure developed by Phillip Hallam-Baker, from the original CERN team that designed the web.
He introduced it with a talk at this year's HOPE: http://youtu.be/KnTkqLQheQs
http://prismproof.org

https://kinko.me/ (failed crowd funding)

By the words of its author:

This is my second attempt at making an encrypted email client.

The original, scramble.io, is still around. I still use it every day. It could be better, though. Here's what I've learned:
[...]

https://github.com/dcposch/scramble2

Bote mail is a DHT based encrypted mailing system using public keys as addresses, with I2P as the transport for anonymization.

Address: http://i2pbote.i2p (if you don't have I2P configured and running, add .us to use an inproxy to view the site).

Currently, Scramble does not allow attached files.

It's been a few months since the section for Mail-in-a-Box was added. Since then, there has been a new website, setup guide, and discussion forum established for the project. Most importantly, the project's community has ballooned, with over 2,600 stars and almost 100 watchers on its GitHub repository.

The work over those few months has been dedicated to making Mail-in-a-Box easier for people with fewer Linux skills to install, and I think it's worth re-evaluating.

And I'm also unclear how this relates:

Without any automation recipes using something like Puppet, Chef, Salt, or CFEngine, mail-in-a-box is unlikely to be useful to anyone but the curious hobbyist.

Mail server maintenance is certainly not trivial, but I'm not sure how those tools factor into keeping a mail server up-to-date, or resolving other issues that can occur during maintenance.

As of January 1st 2016 the Whiteout Mail service is no longer available.

EOL https://blog.whiteout.io/2015/11/30/end-of-life-for-whiteout-key-service-action-required/

Hey, thanks for this great summary on all the different secure email projects!
How can I keep track of changes to the text? I'm already watching the repository but that will only notify me about issues and releases I think.

Riseup is not new nor decentralized, but it got interesting positions about privacy. Why not including it in the list?

https://tutanota.com is one of those systems that does not use openpgp, but allows encrypted messages to other tutanota users. if sending to outside users, then you need to communicate a password to them out of band and they need to click on a link in the email they receive.

it is a web app that is GPLv3 https://github.com/tutao/tutanota