Mercurial > libervia-backend

diff doc/encryption.rst @ 4352:382dc6e62b6e default tip

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
doc (components, encryption): add documentation on autocrypt for client and email gateway: fix 456
author Goffi <goffi@goffi.org>
date Fri, 28 Feb 2025 09:23:35 +0100
parents 8da377040ba6
children
line wrap: on
line diff
--- a/doc/encryption.rst	Fri Feb 28 09:23:35 2025 +0100
+++ b/doc/encryption.rst	Fri Feb 28 09:23:35 2025 +0100
@@ -133,3 +133,13 @@
 
 .. _XEP-0476: Pubsub Signing: OpenPGP Profile: https://xmpp.org/extensions/xep-0476.html
 
+E2EE with Email Gateway
+=======================
+
+For compatible gateways, Libervia supports "Relayed" encryption, which is a method for using end-to-end encryption (E2EE). This feature is currently experimental and only works for emails.
+
+If no key is known for an email recipient, Libervia uses Autocrypt. Autocrypt automatically exchanges encryption keys to enable what's called "opportunistic" encryption. While the security isn't as robust as proper key management and peer authentication, it still offers better protection than having no E2EE at all. Autocrypt is only used when a recipient’s key is not known by other, more secure means.
+
+For more information about Autocrypt and its security model, please refer to `Wikipedia's Autocrypt page`_.
+
+.. _Wikipedia's Autocrypt page: https://en.wikipedia.org/wiki/Autocrypt