STEED

Usable end-to-end encryption

Steed Logo

End-to-end email encryption is still ignored by almost all users. The mails are left in the clear in the mailboxes of the web mail providers, where they are frequently collected by attackers and lead to an escalation of the attack due to the sensitivity of the mail content. We suggest a new and simplified infrastructure to protect mail that is compatible with OpenPGP and S/MIME and relies on an easy-to-use trust model without a central administration.

The core elements of our proposal are:

  • automatic key generation
  • automatic key distribution and retrieval (through DNS)
  • opportunistic encryption (always encrypt if possible)
  • trust upon first contact

Please read our white paper STEED — Usable End-to-End Encryption.

To read comments on this project, you may want to look into the archives of the gnupg-users mailing list.

Resources

Upcoming events

None as of now.

Past events

2012-07-10
The planned presentation of the project at the RMLL in Geneva had to be canceled for private reasons.
2012-03-02
The project was presented at the GUUG FFG 2012 in Munich.
2011-11-16
The project was explained at the GUUG Regionaltreffen West in Cologne.
2011-11-13
Werner Koch gave a talk on the project at FSCONS 2011.
2011-10-17
First version of the STEED paper published.
2011-07-12
First project ideas were explained at the 2011 RMLL conference in a keynote by Marcus Brinkmann.
Copyright 2011 g10 Code GmbH. Verbatim copying and distribution is permitted in any medium, provided this notice is preserved.