I searched in vain for 10 years to find a good email system. I guess such does not exist unless you pay a lot. Hilary Clinton’s system was probably not secure. I don’t have details. Should not have been permitted. Auditors should have caught that violation.
I think the USA federal government should give everybody a free secure email box. Cost would be miniscule.
My new system will be secure but you have to pay for it – about a penny per page.
Of the free systems this Swiss system seems to the best:
ProtonMail is a free and open source web-based encrypted email service founded in 2013 at the CERN research facility by Jason Stockman, Andy Yen, and Wei Sun. ProtonMail is designed as a zero knowledge system, using client-side encryption to protect emails and user data before they are sent to ProtonMail servers, in contrast to other common webmail services such as Gmail and Hotmail. ProtonMail is run by the company Proton Technologies, based in the Canton of Geneva, and its servers are located at two locations in Switzerland, outside of US and EU jurisdiction. The service received initial funding through a crowdfunding campaign, and will be sustained long-term by multi-tiered pricing, although the default account setup is free.
ProtonMail has approximately 500,000 users as of October, 2015.
ProtonMail accounts use two user passwords. The first of these—the Login Password —authenticates the user into the ProtonMail system. The second—the Mailbox Password —is used to decrypt the user’s electronic mailbox. This decryption takes place client-side in a web browser. The second password is known only to the user; as ProtonMail’s servers hold the user’s data in encrypted form, password recovery is not possible nor can ProtonMail decrypt user messages under a court order.
Similar to Snapchat, ProtonMail also includes a message expiration feature: messages can optionally self-destruct from the ProtonMail system after a period of time.
Distribution of ProtonMail servers in Switzerland.
ProtonMail uses a combination of public-key cryptography and symmetric encryption protocols to offer end-to-end encryption. When a user creates a ProtonMail account, their browser generates a pair of public and private RSA keys. The public key is used to encrypt the user’s emails and other user data. The private key, which is capable of decrypting the user’s data, is symmetrically encrypted with the user’s mailbox password in the user’s web browser using AES-256. The public key and the encrypted private key are then both stored on ProtonMail servers. Thus, ProtonMail stores decryption keys only in their encrypted form, so ProtonMail developers are unable to retrieve user messages.
Messages sent from one ProtonMail account to another ProtonMail account are encrypted with the public mailbox key of the recipient. When the recipient logs in, their Mailbox Password decrypts their private key, revealing their Inbox. Messages sent from ProtonMail to non-ProtonMail email addresses may be sent with or without encryption, depending on the sender’s choice. Without encryption, the emails will be sent in clear text. With encryption, the message is encrypted with AES under a shared password, distributed in advance between the two parties. The non-ProtonMail recipient receives a link which takes them to the ProtonMail website. Once the pre-shared password is supplied, the email is decrypted in the web browser. Emails from a non-ProtonMail address to ProtonMail are sent in clear text unless PGP is used.
In September 2015, ProtonMail added native support to their web interface and mobile app for Pretty Good Privacy (PGP). This allows a user to export their ProtonMail PGP-encoded public key to others outside of ProtonMail, such as Facebookor GPG users, enabling them to use the key for email encryption. The ProtonMail team plans to support PGP encryption from ProtonMail to outside users.
A video demonstrating a cross-site scripting attack was shown in July 2014. The ProtonMail developers reviewed the video and confirmed that the issue affected only an early development version of ProtonMail that was released in May 2014, and the attack did not affect the current version.
Architecture of a ProtonMail datacenter.
ProtonMail administrators maintain and own their own server hardware and network to avoid trusting a third party. In response to overwhelmed servers, in mid-2014 ProtonMail founders began expanding server architecture. The service is currently powered by two redundant datacenters in central and western Switzerland. Each datacenter uses load balancing across web, mail, and SQL servers, redundant power supply, hard drives with full disk encryption, and exclusive use of Linux and other open-source software. ProtonMail also joined the RIPE NCC in an effort to have more direct control over the surrounding Internet infrastructure.
Transport Layer Security (TLS) is used to secure and encrypt all Internet traffic between users and ProtonMail servers. A whitepaper and source-code are coming soon, according to the developers. Protonmail.ch holds an “A” rating from Qualys SSL Labs.
ProtonMail uses a web-based interface, similar to Gmail’s. Users also have the ability to set expiration dates for emails and encryption passwords for outgoing emails to non-ProtonMail users.
ProtonMail was created in response to the 2013 disclosure of global surveillance and interception of email by the NSA, and is inspired by Gmail, Lavabit, and Snapchat.
On June 17, 2014, ProtonMail started a crowdfunding campaign on Indiegogo with the goal of raising $100,000 USD. On June 30, 2014, the PayPal account of ProtonMail was frozen, preventing the withdrawal of $251,721 worth of donations in the account. A representative of PayPal stated that the company froze the account over the doubts of the legality of the encryption, statements that were unfounded. The restrictions were lifted the following day. The campaign ended on July 31, 2014 with a total of $550,377 raised from 10,576 donors.
On March 18, 2015, ProtonMail received $2 million USD from Charles River Ventures and the Fondation Genevoise pour l’Innovation Technologique. The ProtonMail developers plan on using the funding to expand their infrastructure, grow their team, and open new offices.