An interesting idea, but I'm not sure if it's a good one.
https://datatracker.ietf.org/doc/draft-wussler-openpgp-forwarding/
-[snip] 8><
1. Introduction
An OpenPGP user might be interested in forwarding their email to
another user without delegating decryption or interacting beyond
protocol setup. In this document we outline the changes necessary to
the OpenPGP protocol to safely allow:
* Recipients to delegate trust to third parties to read their
messages;
* MTAs to act as cryptographic Proxies and transform select
messages;
* Forwardees to read the transformed email.
-[snip] 8><
https://datatracker.ietf.org/doc/draft-wussler-openpgp-forwarding/
I don't really understand what problem they are trying to solve here...
https://datatracker.ietf.org/doc/draft-wussler-openpgp-forwarding/
I don't really understand what problem they are trying to solve
here...
Yeah..it's a bit confusing for me too.
"Abstract
An OpenPGP user may want to request their email provider to
automatically forward some or all of the messages they receive to a
third party. Given that messages are encrypted, this requires
transforming them into ciphertexts decryptable by the intended
forwarded parties, while maintaining confidentiality and
authentication."
Have you tried forwarding an encrypted message elsewhere and
decrypt it from there? Doesn't work for me.
"Abstract
An OpenPGP user may want to request their email provider to
automatically forward some or all of the messages they receive to a
third party. Given that messages are encrypted, this requires
transforming them into ciphertexts decryptable by the intended
forwarded parties, while maintaining confidentiality and
authentication."
Yeah, don't really understand why you would want or need this...
Have you tried forwarding an encrypted message elsewhere and
decrypt it from there? Doesn't work for me.
There shouldn't be a problem as long as the pgp payload isn't changed...
"Abstract
An OpenPGP user may want to request their email provider to
automatically forward some or all of the messages they receive to
a
third party. Given that messages are encrypted, this requires
transforming them into ciphertexts decryptable by the intended
forwarded parties, while maintaining confidentiality and
authentication."
Yeah, don't really understand why you would want or need this...
I concur. What's wrong with sending encrypted email to a
direct destination. I don't understand the need for a "trusted
3rd party".
Perhaps this is a ruse by some three-letter agencies to gain
the opportunity to read encrypted traffic.
Perhaps this is a ruse by some three-letter agencies to gain
the opportunity to read encrypted traffic.
I had the same thought...
Perhaps this is a ruse by some three-letter agencies to gain
the opportunity to read encrypted traffic.
I had the same thought...
Apparently the person associated with the proposal works for
ProtonMail.
Sysop: | Tetrazocine |
---|---|
Location: | Melbourne, VIC, Australia |
Users: | 4 |
Nodes: | 8 (0 / 8) |
Uptime: | 59:44:54 |
Calls: | 65 |
Files: | 21,500 |
Messages: | 73,572 |