[Users] [Bug 3129] No offline encryption/signing is possible

[noreply at thewildbeast.co.uk]

http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=3129

--- Comment #5 from exit <e.ex.exi.exit at safe-mail.net> ---
You're right, offline signing is possible, offline encryption not. I overlooked
this possibility and therefore didn't check this possibility when issuing the
request.

"Encryption is done just before sending to allow re-edition." This only makes
partially sense since re-edition requires the renewal of the signature which
involves a hash of the plain text message.

I still think that the requested feature (offline encryption and signing) makes
sense and is security-relevant.

I have in mind the following use case: There are two independent systems S1 and
S2 of which S1 is regularly online, whereas S2 is always or mostly offline. S1
is used for sending and receiving encrypted emails. S2 is used for reading and
composing encrypted emails. To make this possible, the INBOX is regularly moved
from S1 to S2, whereas the QUEUE is moved from S2 to S1. (Alternatively, the
mail folders reside on a shared disk).

The assumption behind this design is that S1 may be compromised by remote
attacks from which S2 is protected by the air gap. All messages pass through S1
in an encrypted state. Both the secret key and the plain texts are accessible
in the offline system only.

In the current design, the above security setting is only partially fulfilled:
received pass through S1 only in an encrypted state, and the secret key is
accessible only in S2, protecting it from being stolen. However, messages to be
sent pass through S1 in a signed, but unencrypted state.

For the mentioned reasons, I have reopened the issue.

Anyway I want to say THANK YOU to the developer's team of claws-mail which is a
wonderful piece of software I use for more than a decade!!!

-- 
You are receiving this mail because:
You are the assignee for the bug.