i think it might in theory

  • edric
    link
    fedilink
    English
    arrow-up
    6
    arrow-down
    3
    ·
    4 months ago

    Well for one, email is inherently insecure, so not sure if the fediverse can learn from that. It’s already not private.

    • helenslunch@feddit.nl
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      2
      ·
      4 months ago

      It’s not inherently insecure. There are secure email services but all parties have to be using it.

      • edric
        link
        fedilink
        English
        arrow-up
        2
        arrow-down
        1
        ·
        4 months ago

        Exactly, that was my point. Email as it is, is insecure, because you can’t encrypt it and make it work universally unless everyone else does.

          • edric
            link
            fedilink
            English
            arrow-up
            2
            ·
            edit-2
            4 months ago

            English isn’t my first language so I might be using “inherently” incorrectly, but I thought it means:

            in a way that exists as a natural or basic part of something

            So in its basic and natural form, email is not secure. It wasn’t designed as such. Full E2E encryption was only implemented recently by certain providers within their own domains, and won’t work across the board unless all of them cooperate, which won’t happen.

            • helenslunch@feddit.nl
              link
              fedilink
              English
              arrow-up
              1
              arrow-down
              1
              ·
              4 months ago

              “Inherently” means essentially “no matter how you do it”. If you use an encrypted email provider to send a message to another user on another encrypted email provider, it’s perfectly secure. Ergo, it’s not “inherent”.

              Full E2E encryption was only implemented recently by certain providers within their own domains

              It definitely works across domains. All you have to do is point your domain at your preferred secure email provider.

              and won’t work across the board

              It doesn’t need to.