Skip to main content

With different plans which fit everyone's #privacy needs, Tuta makes the perfect last minute #gift for your friends and family. 🎁

You can check out all of our #encryption solutions here:
👉 https://tuta.com/encryption

Give the gift of privacy this #holiday season! 🎅 🎄

Everything you need to know about Tutanota's encryption.

Details on how the encrypted email & calendar service Tutanota encrypts all data.
Tutanota
#privacy #encryption #gift #holiday
in reply to Tuta

spydon :dartlang:
spydon :dartlang:
is it really secure if there are backdoors though? (Like the recovery key you have stored for all accounts)
in reply to Pixelcode 🇺🇦

spydon :dartlang:
spydon :dartlang:
@pixelcode allegedly they have to have a backdoor for the German authorities to be able to get access to the inboxes of suspected criminals, and they have implemented this by having the recovery key (and you can't choose to not create a recovery key). From what I've heard they are also under a gag order, so they can't properly respond to queries about this.
@Pixelcode 🇺🇦
in reply to spydon :dartlang:

Pixelcode 🇺🇦
Pixelcode 🇺🇦

@spydon In 2020, the Hanover District Court had ordered the telecommunications surveillance of a Tutanota mailbox, and the public prosecutor's office had also applied for a penalty payment and preventive detention against the managing director of Tutanota. However, Tutanota lodged an appeal against all of this, and the regional court cancelled the district court's surveillance order entirely. Also, there are no gag orders under German law.

https://www.spiegel.de/netzwelt/web/tutanota-staatsanwaltschaft-wollte-zugriff-auf-verschluesselte-e-mails-a-00000000-0002-0001-0000-000173100110

https://www.heise.de/news/Gerichtsurteil-Sicherer-E-Mail-Dienst-Tutanota-muss-Kundendaten-preisgeben-4584435.html


Krypto-Dienst Tutanota: Staatsanwaltschaft wollte Zugriff auf verschlüsselte E-Mails

In einem internationalen Erpressungsfall wollten Ermittler auf verschlüsselte E-Mails zugreifen. Laut Anbieter hätte das die Sicherheit aller Kunden gefährdet. Das Amtsgericht lehnte die Herausgabe am Ende ab.
Max Hoppenstedt (DER SPIEGEL)
@spydon :dartlang:
in reply to Pixelcode 🇺🇦

Pixelcode 🇺🇦
Pixelcode 🇺🇦

@spydon In June 2019, @Curia ruled that e-mail services are not telecomunication providers, meaning they cannot be subjected to telecommunication surveillance. Before that, Itzehoe District Court had forced Tutanota to forward certain incoming unencrypted e-mails (directed to inboxes of suspected criminals) to law enforcement. End-to-end encrypted e-mails had not been affected at any point, though.

https://www.golem.de/news/europaeischer-gerichtshof-gmail-ist-kein-telekommunikationsdienst-1906-141890.html

https://www.sueddeutsche.de/digital/tutanota-verschluesselung-e-mail-ueberwachung-polizei-1.4676988


Gericht zwingt E-Mail-Anbieter, Daten herauszugeben

Verschlüsselung: Der Fall des deutschen Anbieters Tutanota zeigt, wie viel Einblick Ermittler in die E-Mails von Nutzern verlangen können.
Max Hoppenstedt (Süddeutsche Zeitung)
@spydon :dartlang: @Court of Justice of the EU
This entry was edited (4 months ago)
in reply to Pixelcode 🇺🇦

spydon :dartlang:
spydon :dartlang:

@pixelcode thanks for the information! I might very well have read a FUD article.

It would be interesting to know more about how the recovery key is generated and stored (if it is), because there seems to be a lot of unanswered potential fud around that.

@Pixelcode 🇺🇦
in reply to spydon :dartlang:

Tuta
Tuta
@spydon @pixelcode It looks like you have read a FUD article. We have zero access to your passwords and zero access to your recovery code. All code is published on GitHub so tech experts can verify that.
@Pixelcode 🇺🇦 @spydon :dartlang:
in reply to Tuta

spydon :dartlang:
spydon :dartlang:
thanks for clarifying that! Is there anywhere to read about how it's implemented, without having to read through all the source code?