Welcome to the Treehouse Community

Want to collaborate on code errors? Have bugs you need feedback on? Looking for an extra set of eyes on your latest project? Get support with fellow developers, designers, and programmers of all backgrounds and skill levels here with the Treehouse Community! While you're at it, check out some resources Treehouse students have shared here.

Looking to learn something new?

Treehouse offers a seven day free trial for new students. Get access to thousands of hours of content and join thousands of Treehouse students and alumni in the community today.

Start your free trial

Security

What's ProtonMail and Enigmail used for and how am I supposed to use them?

Sure I can read the about page and fiddle around on google, I know, but I'm just asking it cuz I want to know from someone who has an experience in them... Thanks In Advance !!!

Steven Parker
Steven Parker
231,268 Points

:mailbox_with_mail: Hi, I got your request. But I'm not experienced with either of these applications, so I'll leave this question to someone who can give you a knowledgeable answer.

3 Answers

As a ProtonMail user, I rely on the security claims the company makes, meaning there are less eyes that could have potential access to your emails or private data. An example is that at the very least, most free email providers specifically states in the privacy agreements they may run algorithms through your email for advertisement purposes. Here's a few things that makes their security claim more credible than that of many email providers:

They do not store a recovery key to your emails.

Basically this leads me to believe that they do not store backup keys (compared to other email providers that lets your "recover passwords", meaning you are the only person with your key. This can mean many things, but worst case scenario, the government can't just get them to print out all your emails because, well, they really don't have access to your emails.

They have additional encryption for your email transmissions.

ProtonMail uses PGP encryption for all their outgoing and incoming emails, which verifies the identity of the user but does not identify the user or track the user. You can read about it at the link I provided.

Their physical location.

The third and somewhat debatable point for a service like ProtonMail is that their servers are located in Switzerland, they may make it more difficult for their physical servers to be seized or subpoenaed.

That being said, nothing is truly secure, if the business operates in any way in the U.S., long arm treaties like the MLAT can be used to cooperate with foreign governments to obtain the data. In cases of illegal activity, cached copies held at your ISP or on your local hard drive can be used as evidence, without ever having to decrypt the original documents.

I hope that helps to answer your question.

Thank you, hamsternation, that was quite a great effort. marked it the best.

It's ok... Thanks for the reply.