I hadn't seen that work, but it does look interesting. I'm not quite sure what work you were envisioning I, or the openpgp.js team, would help with this project. I think the most likely path would be to just make openpgp.js work with Firefox (when it's ready) and allow gaia to craft an implementation.
For my intentions, the sandboxing is actually advantageous for security of the extension because it means that the private key is stored in the extension namespace rather than gmail's. I do not foresee myself extensively working on a direct implementation with gaia, but perhaps I could help them get a start if that would be helpful. Sean On Sat, Aug 11, 2012 at 7:48 PM, Tankred Hase <[email protected]> wrote: > Hey Sean, > > I was wondering if you've seen the work Mozilla is currently doing on its > Firefox OS email client. They are building an IMAP client in js, which is > being optimized for syncing with gmail and yahoo mail. > > https://github.com/mozilla-b2g/gaia-email-libs-and-more > > Also David Dahl confirmed window.crypto.getRandomValues() is now > implemented in gecko and is to be in "FF 17, maybe sooner". > > I dont know if you have been following crypto.cat in the last few days. > They are going extention only in cryptocat 2, offering apps for chrome and > mozilla WebRT and disallowing direct webusage over https. > > I have taken a look at your Chrome extention for Gmail. A complete signed > installable email app could perhaps deal with some of the issues regarding > sandboxing, code delivery and storing the private key in the gmail domain. > What do you think? > > Tankred > > _______________________________________________ > > http://openpgpjs.org > >
_______________________________________________ http://openpgpjs.org
