I took a look at the gaia email app. Its still in its early stages, but the core functionality seems to be there. I asked Andrew if this approach is also to come to the desktop, since Mozilla is no longer investing in Thunderbird. He said that while they're focus is currently on the touch-friendly gaia app, the email-backend libs containing the imap functionality could also be used for an installable desktop app.
My initial goal with safewith.me was actually to offer a type of easy secure filesharing app. But it may be more natural to do this as a simple email app. Along with the app, one could imagine a kind of trusted PKI service, that fetches the recipient's public key coupled to their BrowserID/Persona. It would course be debatable if TTP or Web of Trust is the way to go, but this service along with a simple app interface could offer users an easy way to get started writing encrypted mails with a one-click installation. Thoughts? Tankred Am 13.08.2012 10:33 schrieb "Tankred Hase" <[email protected]>: > I wasnt trying to suggest that you or anyone do this work. Sorry if it > came across like that. I was mearly trying to get your technical opinion on > such an email app, since you had already done the gmail extention. > > One of the painpoints I see with PGP on the desktop is getting everything > installed and configured is probably too much for the average user. What > struck me when I saw imap client implemtation in js, is that one could take > this and bundle it with openpgp.js into a simple to use preconfiged email > app. > > The point with the seperate namespace is interesting though. Thanks. > > Tankred > Am 13.08.2012 06:11 schrieb "Sean Colyer" <[email protected]>: > >> I hadn't seen that work, but it does look interesting. I'm not quite sure >> what work you were envisioning I, or the openpgp.js team, would help with >> this project. I think the most likely path would be to just make openpgp.js >> work with Firefox (when it's ready) and allow gaia to craft an >> implementation. >> >> For my intentions, the sandboxing is actually advantageous for security >> of the extension because it means that the private key is stored in the >> extension namespace rather than gmail's. >> >> I do not foresee myself extensively working on a direct implementation >> with gaia, but perhaps I could help them get a start if that would be >> helpful. >> >> Sean >> >> >> On Sat, Aug 11, 2012 at 7:48 PM, Tankred Hase <[email protected]>wrote: >> >>> Hey Sean, >>> >>> I was wondering if you've seen the work Mozilla is currently doing on >>> its Firefox OS email client. They are building an IMAP client in js, which >>> is being optimized for syncing with gmail and yahoo mail. >>> >>> https://github.com/mozilla-b2g/gaia-email-libs-and-more >>> >>> Also David Dahl confirmed window.crypto.getRandomValues() is now >>> implemented in gecko and is to be in "FF 17, maybe sooner". >>> >>> I dont know if you have been following crypto.cat in the last few days. >>> They are going extention only in cryptocat 2, offering apps for chrome and >>> mozilla WebRT and disallowing direct webusage over https. >>> >>> I have taken a look at your Chrome extention for Gmail. A complete >>> signed installable email app could perhaps deal with some of the issues >>> regarding sandboxing, code delivery and storing the private key in the >>> gmail domain. What do you think? >>> >>> Tankred >>> >>> _______________________________________________ >>> >>> http://openpgpjs.org >>> >>> >> >> _______________________________________________ >> >> http://openpgpjs.org >> >>
_______________________________________________ http://openpgpjs.org
