Nostr Web Client

What is the benefit of email over a secure chat?

In email, you have no guarantee how the other smtp servers will handle your mail. You can encrypt your email with PGP, but it requires from the other side to setup keys. You can encrypt with a password, but you have to send a password somewhere... Or you can own the sender and receiver mailboxes, and then you can make sure it is safe.

So sending securely on email is hard.

I guess the only benefit of email is, that you can have threads under subjects, therefore you have grouped messages. It is better organized then to do everything in 1 chat.

Is there any other?

GM! ☕️

#grownostr #plebchain #coffeechain #asknostr

nostr:nevent1qqszgxaqs0pq4zacxns863kjfksawf35u0ef6x053h9funvxq50cqecpzdmhxue69uhk7enxvd5xz6tw9ec82c30qgspj28wx4v02n33vnvp6fkrtcfrcf2t4cfgx4xhv97hlkrz6uxe52crqsqqqqqpqgumju

soulexporter 1y ago

GM.

I guess the benefit of email is that it has become an agnostic protocol that can interact with almost any client?

Ideally you want to send a mail that opens as a gateway into a secure chat on any mail client and then removes the whole chat (cleaning up unnecessary and sensitive data), while leaving behind the key notes you wanted to chat about 😁

Combine security (temporary chat channel) through usability (remove need to install yet another client).

Not that this is feasible, but I didn't read that requirement 🤭

Reply to this note

Please Login to reply.

Discussion

Crusty 👨‍💻 1y ago

🫡

How about privacy? Google can read all emails sent and received through their smtp. So it does not matter if you have gmail account, they still can collect data on you.

soulexporter 1y ago

That is the (far fetched and pure fictional) idea: you send a portal. Like a door to the receiver. GMail f.e. can see the door, but not what goes on behind the door.

To see what goes on, receiver opens the door ( like a PWA URL?) Interacts through that portal, via encrypted channel... Afterwards closes the door... (Remove all temporary files and PWA history).

The PWA is where your magic happens, but for the receiver it is just like getting a mail, only that the back and forth is in the channel.

If you can have the service send a recap with the elements you want to keep as a follow up mail(non sensitive data, just as a reminder,... Meeting notes like)

soulexporter 1y ago

Be aware, I just have imagination, not skills,... Hence the possibly moronic takes 🤣🤭😅

Crusty 👨‍💻 1y ago

Interesting concept. 🤙

Maybe a question:

How do you make sure your email recipient opens the "door" and not google?

soulexporter 1y ago

A key comes to mind, but what is then the key🤔

It might strongly depend on way of communication and what is being communicated 🧐

Might be overthinking this, but on one hand make it to simple and it becomes unprotected, make it too hard and no-one (at least common user) wants to use it (and some might be more willing, but that is only half of the communication channel).

The question might be than rather to make the communication unique : only one can open door, so it is a 1 on 1. This way, ok someone else can open, but what is their gain? Getting info is the obvious one, but that most often is most valuable if harvested without knowing 🤔

The harvest of info by mail service is automated, I would worry more about Google scraping Chrome than opening portal in name of receiver.

The real deal is avoiding social hacking/phishing. F.e. avoiding that the sender is the abuser 🧐, sending portal to extract info/secrets. So how does the receiver know the one on the other side of the portal is whom they say they are.

Ok I am spiraling out now 🤣😅

Crusty 👨‍💻 1y ago

Proton mail if you send password encrypted mail, it just sends a link to the receiver, and the user can open the link, type password, and see the content. This link can also expire after a certain time.