Hacker News new | ask | show | jobs
by jmnicolas 4214 days ago
I'm waiting for someone respected in the crypto circles reviewing their crypto soundness before even considering using this.

Being GPL is a good point but it doesn't mean they don't have a fatal flaw in their code.

I wish I had the skills to review the crypto I use.
3 comments
tptacek 4213 days ago
It's hosted web mail that does crypto in Javascript. How closely do you expect crypto engineers to look at it?

Don't use web mail for secure messaging.

link
icebraining 4214 days ago
They say it was "subject to an extensive penetration test by the SySS GmbH", but don't point to any report or even quote the conclusions.
link
jokoha 4214 days ago
Yes, I love the service, someone respected looking into the crypto would be fantastic!
link