ProtonMail takes aim at Google with an encrypted calendar

I recently left ProtonMail and went back to Fastmail. My reason was that they will never be able to fully support IMAP and now CalDAV because of the encryption they use. I grew to accept that email is not for secure messaging and my paranoia of &quot;I&#x27;m being watched&quot; just went away.<p>If you need secure messaging, use something other than email.

I moved over to Fastmail from ProtonMail a few weeks ago. I think if you value the encryption and privacy and don’t mind the lack of basic stuff like threading in the mobile app or IMAP integration, ProtonMail is fully worth it. That said, for me I just want a well featured email&#x2F;calendar service that can replace gmail once Gewgle fucked us over with Inbox. Fastmail does that for me and provides a lot less friction whilst doing so.<p>ProtonMail feels like a one-trick pony to me. They’re cruising on the allure of privacy features but they have a ways to go on other basics.

Article is light on the details, but ProtonMail has published some here: <a href="https:&#x2F;&#x2F;protonmail.com&#x2F;blog&#x2F;protoncalendar-security-model&#x2F;" rel="nofollow">https:&#x2F;&#x2F;protonmail.com&#x2F;blog&#x2F;protoncalendar-security-model&#x2F;</a><p>&gt; This calendar key will then be symmetrically encrypted (PGP standard) using a 32-byte passphrase that is randomly generated on your device. Once it is encrypted, your calendar key will be stored on the ProtonCalendar backend server.<p>32-byte passphrase: might be fine, depending on what those bytes are; the interesting question is how much entropy it got generated from.<p>&gt; Each member of a calendar will have a copy of the same passphrase that is encrypted and signed using their primary address key. The signature ensures that no one, not our server or any third-party adversary, changed the passphrase.<p>This is where it gets weird. Why do both? The obvious way to encrypt with an ECC key comes with authentication for free. Signing mostly has negative privacy implications. (I think the answer is &quot;we incorrectly decided PGP was a good idea a long time ago and now we are stuck with its problems, which include being wrong about authenticators&quot;.)<p>&gt; The invited member, if they decide to join the calendar, can decrypt the passphrase using their address key. They can also verify that the signature on the passphrase belongs to your email address key. This lets the invited member cryptographically verify that you invited them. To accept the invitation, ProtonCalendar will then pin the passphrase for the invited member by replacing your signature with one created using their own email address key. This signature will later be used by the invited member to verify the passphrase at each application start.<p>Again, with designs less than twenty years old you can do that without a signature.<p>&gt; To accept the invitation, ProtonCalendar will then pin the passphrase for the invited member by replacing your signature with one created using their own email address key. This signature will later be used by the invited member to verify the passphrase at each application start.<p><i>what</i><p>I&#x27;m reviewing the attendee scheme next, but I need more coffee first.

The iCalendar spec[1] already features &quot;encryption by committee&quot; by being thoroughly obfuscated through its innate unreadability and undocumented vendor extensions.<p>On a more serious note, a sibling comment asked if there&#x27;s an API. And, really, for an API to work, we&#x27;d need to agree on some kind of data structures. Reading that spec, and having mucked with LDAP, IMAP and related specs, it really feels like we&#x27;re still banging rocks together in how we define the semantics of data exchange.<p>[1]: <a href="https:&#x2F;&#x2F;tools.ietf.org&#x2F;html&#x2F;rfc5545" rel="nofollow">https:&#x2F;&#x2F;tools.ietf.org&#x2F;html&#x2F;rfc5545</a>

This is a welcome development. ProtonMail has worked well for me. Now if I could only find a way to make a Pixel phone accept that email address instead of one of my several one-off fake name gmail addresses that I use for such things.

I switched to tutanota for the price and features already provided, protonmail is really quite nice though. I&#x27;d love to better understand the legal implications of the hosting countries laws better.

I&#x27;m a bit confused it took Protonmail more than a year yo develop ProtonCalendar. Is it really that difficult to develop?

Is there an API for this calendar? I looked, but didn&#x27;t notice anything. That&#x27;s one of the G features that I like.

Did anyone else notice ProtonMail being used in the movie &quot;Knives Out&quot; to send the ransom note? Cracked me up..

Duplicate of <a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=21913989" rel="nofollow">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=21913989</a> -- I started reading the actual spec here: <a href="https:&#x2F;&#x2F;protonmail.com&#x2F;blog&#x2F;protoncalendar-security-model&#x2F;" rel="nofollow">https:&#x2F;&#x2F;protonmail.com&#x2F;blog&#x2F;protoncalendar-security-model&#x2F;</a>

Here is their write up of the security model: <a href="https:&#x2F;&#x2F;protonmail.com&#x2F;blog&#x2F;protoncalendar-security-model&#x2F;" rel="nofollow">https:&#x2F;&#x2F;protonmail.com&#x2F;blog&#x2F;protoncalendar-security-model&#x2F;</a>

If one doesn&#x27;t care about web access to their calendar is there any recommended encrypted calendar apps to use on an android device as the default calendar app? Does setting a default calendar app to something other than the calendar on ROM actually prevent calendar data from leaking to third parties?

Glad to see any encrypted mail grow their services, this is a bit of a sidebar, but what are some of the updated thoughts about the return of Lavabit and the Dark Mail Alliance group?

Still requires google play store to install and google services to run - not really &quot;polar opposite to google&quot; after all.

I&#x27;d like to see how this compares to fruux, which hosts a privacy concious calendar for years.

I lost a lot of faith in Proton when I learned how much funding they took from the EU. It just runs entirely counter to evidence we’ve seen of Snowden, 5eyes&#x2F;14eyes, and other programs that the EU truly wants end to end encrypted comms for people.<p>Am I wrong to be skeptical?<p>Edit: oh apparently I’m wrong to even suggest something we have other examples of

I am satisfied with the Protonmail, easy to use, secure, good.

nice, but don&#x27;t put all your eggs in one basket

Correct me if I&#x27;m wrong, but this doesn&#x27;t appear to be CalDAV-compatible. If so, xkcd-927 strikes again :-(