[kylebenzle]

Interesting!

Can you give a quick explanation for someone too dumb to understand your first citation?

I use pgp for years but struggle to understand how proton can say email is encrypted when I never have to decrypt it myself.

If proton has the key how is that different from Google just encrypting everything until right before it displays?

I used proton for a couple years but moved back to Gmail cause I figured all the encryption talk was just promotional and using pgp your self is the only way.

[twiss]

Proton does not have the private key material. When you sign up to Proton Mail, the client generates a key pair for you, encrypts the private key with your password, and sends it to the server, along with the public key (which we publish).

Then, when you log in, the client fetches the encrypted private key, decrypts it with your password, and decrypts your emails with the private key. All of this is done automatically but it's still end-to-end encrypted.

The first citation (WKD draft specification) simply describes how to publish (and look up) public keys for a given email address on its domain. So for twiss@proton.me (hypothetical example), the key is published at https://openpgpkey.proton.me/.well-known/openpgpkey/proton.m....