Latest Questions
postmaster & search
These were submitted to be reviewed too:
sigaint
rugged inbox
riseup
torbox
mail2tor
scramble.io
dmail
sigaint
rugged inbox
riseup
torbox
mail2tor
scramble.io
dmail
These were submitted to be reviewed too:
sigaint
rugged inbox
riseup
torbox
mail2tor
scramble.io
dmail
I work at Thexyz and wondered if you can add it to list?
I was referring to this page: Compare - Encrypted Email Service Providers
> Thank you for creating an account on Mailfence. The typical procedure for activating an account after its creation is simply by clicking on the activation link, and the rest is pretty much smooth (providing login & password, and you get into your account). Let us know if you're still facing any issues by sending your login/email ID at (support@mailfence.com).I created a mailfence account and did the activation email link, but it says invalid when I try to login.
> No it's not an absolute zero-knowledge system yet - the sole reason for mentioning it as 'Yes' is because we misunderstood the 'definition' of zero-knowledge here (which is a broad term when it comes to Information Security) and took it under the context of message content/body (which is encrypted) and the system has absolutely no knowledge about the plaintext (due to being end-to-end) where every bit of message content/body gets en(de)crypted on the client side.I'll ask since others will ask, how can it be zero knowledge if the metadata isn't encrypted?
I thank you for your concern, though all of those features (Digital Signatures, Key Management...) are the essential aspects of Encrypted email solutions which has been overlooked by almost all of the current services - and that is where Mailfence holds one its edging uniqueness.> I'll check some of the other services and see if there is enough known to get the additional features listed.
Both of them are two separate operations (both with/without the aspect of security). The external email address, which is being required for activating your account is a general procedure which most of today's emailing services follow for account activation - however, eliminating this condition is on our roadmap.> I noticed that an e mail is required to register & there is a PW reset,are theses security issues?
I thank you for notifying us, it has been noted and will be corrected soon.> A typo on the web page..."(with no Armerican bodies included in the certification chain)".
Yes, you are absolutely correct - we misunderstood that term (more details can be found in my response to the admin).>Encrypted contacts - no, encrypted metadata- no, zero-knowledge-yes. I may be missing something, but I thought zero-knowledge assumes email service has no knowledge about user?
We do not provide encrypted (AES) storage as of now, but that again is on our roadmap.>Also AES-256-no, but 2 layers of encryption, AES inside PGP - that is incorrect