Protect your data when crossing borders
Anyone who has traveled to the United States will know how seriously border security is taken. In recent years, Customs & Border Protection (CBP) agents have been increasingly searching travelers’...
Category: Security
Welcome to the Security archives of the Mailfence Blog.
Mailfence is not impacted by OpenPGP signature spoofing vulnerabilities
New vulnerabilities in many OpenPGP and S/MIME enabled email clients were announced on 2019-04-30. These signature spoofing vulnerabilities exploit weaknesses in the way OpenPGP signatures are verified by email clients...
Encryption Backdoors: Can they work?
Bestimmte Ereignisse in der Vergangenheit haben immer wieder zu Forderungen von Regierungsstellen und Strafverfolgungsbehörden nach ausgefeilteren Tools zur Online-Überwachung von Verdächtigen geführt. Eine Idee, die immer wieder für Aufmerksamkeit sorgt,...
Email Headers: How to read and use message headers
This blogpost will explain how to read and understand the ’email header’ which travels with every email. It contains details about the sender, taken route and the receiver. Use this...
Mailfence is not impacted by Efail vulnerabilities
New vulnerabilities in many OpenPGP and S/MIME enabled email clients were announced yesterday. These “Efail” vulnerabilities have attracted a lot of attention in the media. As per our analysis, Mailfence...
User data security, privacy and anonymity
User security, privacy and anonymity are three related concepts that overlap. In this blogpost, we will try to explain how Mailfence relates to each of them. What is security, privacy...
OpenPGP, S/MIME, Secure Message Escrow: Which E2E encryption is best?
From SMTP to OpenPGP, S/MIME and Secure Message Escrow Emails have been the epicenter of online communication for decades now. Unfortunately the underlying protocol called SMTP (Simple Mail Transfer Protocol),...
OpenPGP digital signature best practices
In a recent post, we discussed the OpenPGP encryption best practices. Digital signatures on the other hand are also a vital part of OpenPGP which gets used both by advanced and entry level users....
OpenPGP encryption best practices
Strong encryption is no longer a privilege of geeks and paranoids, but is becoming mainstream. However, true end-to-end encryption is not out-of-the-box and generally requires you to activate a number of...
Mailfence blog: SSL certificate
This is a follow up of last blog post Mailfence launches new blog, and provide details over the SSL/TLS certificate for this blog. A modern browser should automatically check the...
Secure email: Why end-to-end encryption is at the heart of it
Everybody wants your data one way or the other. It’s not just the NSA, Google, Facebook or your phone provider. Even your torch app or online store tries to get access to your...