I suggest you ...

I wonder why the industry-standard 256-bit AES encryption was not chosen?

I wonder why the industry-standard 256-bit AES encryption was not chosen. Today I found that my entire Tutanota email library has disappeared! No sign of it anywhere in my bookmarks.
Browser-based JavaScript cryptography used by Tutanota is considered very insecure. Given what we now know about the extent of the NSA’s assault on encryption standards, most experts agree that AES-256 provides a higher security margin.

47 votes
Vote
Sign in
(thinking…)
Sign in with: facebook google
Signed in as (Sign out)
You have left! (?) (thinking…)
Anonymous shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

2 comments

Sign in
(thinking…)
Sign in with: facebook google
Signed in as (Sign out)
Submitting...
  • AdminTutanota Support (Feedback Manager, Tutanota) commented  ·   ·  Flag as inappropriate

    AES-128 is secure regarding todays computers.

    When we started developing Tutanota in 2011, AES-128 was the best choice to guarantee secure encryption and good encryption/decrpytion speed, particularly on mobile. However, we are aware that things change, particularly with the emergence of quantum computers in the coming decades. That's why we plan to update our algorithms in the near future to make them quantum-resistant.

  • Alex commented  ·   ·  Flag as inappropriate

    Hmm...some insight on this please? Maybe from some Tutanota official?

Feedback and Knowledge Base