Mercurial > libervia-backend
comparison doc/encryption.rst @ 4352:382dc6e62b6e default tip
doc (components, encryption): add documentation on autocrypt for client and email gateway:
fix 456
| author | Goffi <goffi@goffi.org> |
|---|---|
| date | Fri, 28 Feb 2025 09:23:35 +0100 |
| parents | 8da377040ba6 |
| children |
comparison
equal
deleted
inserted
replaced
| 4351:6a0a081485b8 | 4352:382dc6e62b6e |
|---|---|
| 131 | 131 |
| 132 .. _"publisher" attribute: https://xmpp.org/extensions/xep-0060.html#publisher-publish-success-publisher | 132 .. _"publisher" attribute: https://xmpp.org/extensions/xep-0060.html#publisher-publish-success-publisher |
| 133 | 133 |
| 134 .. _XEP-0476: Pubsub Signing: OpenPGP Profile: https://xmpp.org/extensions/xep-0476.html | 134 .. _XEP-0476: Pubsub Signing: OpenPGP Profile: https://xmpp.org/extensions/xep-0476.html |
| 135 | 135 |
| 136 E2EE with Email Gateway | |
| 137 ======================= | |
| 138 | |
| 139 For compatible gateways, Libervia supports "Relayed" encryption, which is a method for using end-to-end encryption (E2EE). This feature is currently experimental and only works for emails. | |
| 140 | |
| 141 If no key is known for an email recipient, Libervia uses Autocrypt. Autocrypt automatically exchanges encryption keys to enable what's called "opportunistic" encryption. While the security isn't as robust as proper key management and peer authentication, it still offers better protection than having no E2EE at all. Autocrypt is only used when a recipient’s key is not known by other, more secure means. | |
| 142 | |
| 143 For more information about Autocrypt and its security model, please refer to `Wikipedia's Autocrypt page`_. | |
| 144 | |
| 145 .. _Wikipedia's Autocrypt page: https://en.wikipedia.org/wiki/Autocrypt |