[bscphil]

Would Fastmail ever consider verifying signed messages? Authenticity is one of many things gained through using PGP, and implementing it in the Fastmail interface wouldn't lead to the false sense of security that "encrypted" email in the browser supposedly gives.

[brongondwana]

Perhaps - though it leads to either offering a way for users to manage their keychain, or managing those trust relationships ourselves - and of course adds a channel where we could be compelled to lie to users about authentication on the message.

Right now the only authentication signal we display on the website is a green tick if the message came from one of our staff or one of our trusted systems.