[zeroz]

Let's encrypt support for S/MIME would be great.

While seeing great progress in securing the web via HTTPS email still lacks fundamental security. While I would love to see a functioning PGP or other decentralized setup, network effects are a strong force and it's still to much hassle for non-technical people. Free S/MIME would help me to distribute secure e-Mail setup for friends & family.

Looking for free or cheap certificates there was no satisfying provider. Either expensive, or not trustworthy server-side generated certificates, or not compatible/ not trusted root authority, or dedicated Windows software for generating certificates:

[0] https://www.swisssign.com/email/email-id-silver.html [1] https://www.sslplus.de/bestellen/step1.html?cert=79 [2] https://www.dgn.de/e-mail-zertifikat-dgncert/ [3] https://en.sklep.certum.pl/data-safety/id-certificates/certi... [4] https://wiseid.com/pricing/ [5] https://www.actalis.it/products/certificates-for-secure-elec... [6] https://volksverschluesselung.de/ [7] https://en.sklep.certum.pl/data-safety/id-certificates/certi... [8] https://www.bundesdruckerei.de/de/loesungen/Certificate-Serv... [9] https://www.instantssl.com/

[Avamander]

LE for domain-validated code signing would be good as well. Knowing an executable came from a trusted domain even if it was mirrored or rehosted sounds nice.