We want to make a feature similar to this description available (optional): https://tutanota.uservoice.com/forums/237921-general/suggestions/8258685-enhance-login-security
273 votesRichard commented
The level of encryption is fundamentally vital to this service...
“Assume that your adversary is capable of a trillion guesses per second” (Edward Snowden)
While most people are unlikely to be individually targeted for surveillance, just using an encrypted email increases the likelihood that this service itself will be targeted. State intelligence services are allowed to retain encrypted data indefinitely, until such time when they are able to decrypt it.
What is worse? - *Knowing* you have no way to communicate privately (coming soon to the UK)
...or *thinking* that you do have a way to communicate privately?Richard commented
How about an option in our settings?
So users can select how much of an encryption v speed performance hit they are willing to take?
11 votesAdminTutanota Support (Admin, Tutanota) responded
Thanks for requesting a feature for further improving the security of Tutanota! We currently use TLS and DANE to protect authentication and integrity data and (only tunneled) RSA and AES to provide additional confidentiality. Neither the confidentiality nor the integrity of your data is currently at risk. In order to increase the security of Tutanota even further, we will implement digital signatures soon.