i think it might in theory

  • helenslunch@feddit.nl
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    2
    ·
    10 months ago

    It’s not inherently insecure. There are secure email services but all parties have to be using it.

    • edric@lemm.ee
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      1
      ·
      10 months ago

      Exactly, that was my point. Email as it is, is insecure, because you can’t encrypt it and make it work universally unless everyone else does.

        • edric@lemm.ee
          link
          fedilink
          English
          arrow-up
          2
          ·
          edit-2
          10 months ago

          English isn’t my first language so I might be using “inherently” incorrectly, but I thought it means:

          in a way that exists as a natural or basic part of something

          So in its basic and natural form, email is not secure. It wasn’t designed as such. Full E2E encryption was only implemented recently by certain providers within their own domains, and won’t work across the board unless all of them cooperate, which won’t happen.

          • helenslunch@feddit.nl
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            1
            ·
            10 months ago

            “Inherently” means essentially “no matter how you do it”. If you use an encrypted email provider to send a message to another user on another encrypted email provider, it’s perfectly secure. Ergo, it’s not “inherent”.

            Full E2E encryption was only implemented recently by certain providers within their own domains

            It definitely works across domains. All you have to do is point your domain at your preferred secure email provider.

            and won’t work across the board

            It doesn’t need to.