Mailfence: Difference between revisions
m v2.04b - Bot T20 CW#61 - Fix errors for CW project (Reference before punctuation - Link equal to linktext) |
|||
Line 57: | Line 57: | ||
== Security and privacy == |
== Security and privacy == |
||
Aside from conventional security and privacy features including managing access or generating specific password for web and non-web services,<ref>{{cite web|title=Harden your Mailfence account|url=https://blog.mailfence.com/harden-mailfence-account/|accessdate=5 May 2020}}</ref> [[ |
Aside from conventional security and privacy features including managing access or generating specific password for web and non-web services,<ref>{{cite web|title=Harden your Mailfence account|url=https://blog.mailfence.com/harden-mailfence-account/|accessdate=5 May 2020}}</ref> [[two-factor authentication]],<ref>{{cite web|last1=Davis|first1=Josh|title=Two Factor Auth (2FA)|url=https://twofactorauth.org/|accessdate=12 December 2016}}</ref> [[SpamAssassin|spam protection]] alongside of [[plus addressing]],<ref>{{cite web|title=Plus addressing to filter email|url=http://blog.contactoffice.com/2016/10/18/plus-addressing-to-filter-email/|accessdate=18 October 2016}}</ref> [[Blacklist_(computing)#Email|sender address blacklist]]<ref>{{cite web|title=Mailfence Release Notes March 2018|url=https://blog.mailfence.com/mailfence-release-notes-march-2018/|accessdate=13 March 2018}}</ref> and [[Whitelisting#Email_whitelists|whitelist]],<ref>{{cite web|title=Blacklist a specific sender address|url=https://kb.mailfence.com/kb/how-can-i-blacklist-a-specific-sender-address/|accessdate=23 July 2019}}</ref> Mailfence offers following features: |
||
=== Transport security === |
=== Transport security === |
Revision as of 22:30, 8 May 2021
Type of site | Webmail |
---|---|
Available in | English, Spanish, French, German, Dutch, Italian, Portuguese and Russian |
Owner | ContactOffice Group |
URL | mailfence |
Commercial | Yes |
Registration | Required |
Launched | 12 November 2013 |
Current status | Online |
Content license | Proprietary |
Mailfence is an encrypted email service that offers OpenPGP based end-to-end encryption and digital signatures. It was launched in November 2013 by ContactOffice Group, which has been operating an online collaboration suite for universities and other organizations since 1999.[1]
History
Development
In the midst of 2013, the Mailfence project was started by the founders of ContactOffice. In March 2016, a beta version of end-to-end encryption and digital signatures for emails was released.[2] In January 2021, Mailfence released progressive web application for mobile devices.[3]
Block in Russia
On 05 March 2020, Mailfence reported that their SMTP servers are blocked by Russian based email services. This was in response to their refusal to submit a Notice of Commencement of Collaboration with Roskomnadzor’s (the Federal Supervision Agency for Communications, Information Technology, and Mass Communication) of the Russian government. Mailfence did not respond to this request, citing obligation to provide information about users, violating its Terms and the federal Belgian laws. [4]
Features
Mailfence provides secure email features, with other functions such as Calendar, Contacts, Documents and Collaboration.[5] Encryption and Two-factor authentication are available in the free version of the product. Most other features are only available with paid subscriptions that start at 2,50 € per month.
The service supports POP/IMAP and Exchange ActiveSync[6] as well as vanity domains with SPF, DKIM, DMARC[7] and catch-all address support.[8][9] Users can send both plain and rich text emails, organize messages in folders and/or categorize them with tags, take notes by setting comment on each message and create default message signatures for every sender address. Different identities can also be managed using aliases and filters for incoming emails. [10]
Contacts
The contacts support (CSV, vCard, LDIF) import, (vCard, PDF) export and can be accessed using CardDAV.[11] Users organize them with tags and can also create contact lists.
Calendar
The calendar supports vCal/iCal import, export and can be accessed by using CalDAV.[12] Users can share their calendars with group members and can also create polls.[13]
Documents
The documents can be accessed using WebDAV or edited online. Users can drag and drop files in folders, categorize them with tags take notes by setting comment on each file.[14]
Groups
Groups allow users to share mailboxes, documents, contacts, calendars and perform instant chatting with group members in a secure way. A group administrator manages the access rights of group members and can also set another group member as co-admin or the main admin of the group.[15][16]
Web-based clients
The web-interface comes with an embedded IMAP, POP3, CalDAV, and WebDAV client. Users can add external accounts and manage them centrally in the web-interface.[17][18]
User management
Account owners can create and manage user accounts using the admin console.[19]
Server location
Since their servers are located in Belgium,[20] they are legally outside of US jurisdiction. Mailfence is therefore not subjected to US gag orders and NSLs, notwithstanding extradition treaties with the US.[21][22] Under Belgian law, all national and international surveillance requests must go through a Belgian court.[23]
Security and privacy
Aside from conventional security and privacy features including managing access or generating specific password for web and non-web services,[24] two-factor authentication,[25] spam protection alongside of plus addressing,[26] sender address blacklist[27] and whitelist,[28] Mailfence offers following features:
Transport security
The service supports HTTPS and uses TLS with ephemeral key exchange to encrypt all internet traffic between users and Mailfence servers. Their 4096-bit RSA SSL certificate is signed by Buypass AS and supports Certificate Transparency and Strict Transport Security.[29] Mailfence.com holds an "A+" rating from Qualys SSL Labs [30] and also supports DANE. [31]
End-to-end encryption
The service uses an open-source implementation of OpenPGP (RFC 4880) for emails. [32] OpenPGP keypair is generated in client-browser, encrypted (via AES256) with the user's passphrase, and then stored on Mailfence server.[33][34] The server never sees the user's OpenPGP keypair passphrase. The service also supports end-to-end encryption for emails using a shared password with the possibility of message expiration.[35]
OpenPGP signatures
The service gives the choice between "signing", or "signing and encrypting" an email message with or without attachments.[36]
Integrated Keystore
The service provides an integrated keystore to manage OpenPGP keys,[37] and does not require any third-party add-on/plugin. OpenPGP keypairs can be generated, imported or exported.[38] Public keys of other users can be imported through file or in-line text or can be downloaded directly from Public key servers.[39]
Full OpenPGP interoperability
Users can communicate with any OpenPGP compatible service provider.[40]
Warrant canary and transparency report
The service maintains an up-to-date transparency report and warrant canary.[41][42]
See also
References
- ^ "ContactOffice launch and users".
- ^ "BETA launch of a pure end-to-end encrypted email solution that gives you full control". Retrieved 25 May 2016.
- ^ "Mailfence mobile app goes out of beta". Retrieved 14 January 2021.
- ^ "Mailfence email servers blocked in Russia". Retrieved 5 March 2020.
- ^ Leonard, John. "Escape from Yahoo: Nine encrypted email alternatives". Retrieved 11 October 2016.
- ^ Skjefstad, Vegard. "Secure and Private E-mail: A Provider Overview". Retrieved 1 August 2015.
- ^ "Spoofing defense for Custom domains: SPF, DKIM, DMARC". Retrieved 8 January 2018.
- ^ "Privacytools.io is a socially motivated website that provides information for protecting your data security and privacy". Retrieved 29 May 2016.
- ^ "Mailfence Release Notes Dec 2017". Retrieved 5 December 2017.
- ^ "Mailfence Release Notes May 2017". Retrieved 30 May 2017.
- ^ "Mailfence Contacts: a secure contact management software". Retrieved 27 June 2018.
- ^ "Mailfence Calendar: a secure online calendar to schedule, manage and track meetings & events". Retrieved 9 March 2018.
- ^ "Mailfence Polls: simple and secure meeting scheduler". Retrieved 28 November 2017.
- ^ "Mailfence Documents: secure file sharing, storage and collaboration". Retrieved 9 November 2017.
- ^ "Mailfence Groups: secure group collaboration". Retrieved 5 September 2017.
- ^ "Privacytools.io is a socially motivated website that provides information for protecting your data security and privacy". Retrieved 29 May 2016.
- ^ "How to encrypt email with Gmail and Outlook.com or any other provider". Retrieved 11 October 2017.
- ^ "POP3 vs IMAP vs Exchange ActiveSync. What's the difference?". Retrieved 22 September 2017.
- ^ "Manage your users with the mailfence admin console". Retrieved 21 March 2019.
- ^ "The Mailfence SSL/TLS Certificate". Retrieved 10 June 2016.
- ^ "United States Extradition Treaty with Belgium".
- ^ "United States Supplemental Extradition Treaty with Belgium".
- ^ "Mailfence privacy policy". Archived from the original on 18 July 2014. Retrieved 12 November 2013.
- ^ "Harden your Mailfence account". Retrieved 5 May 2020.
- ^ Davis, Josh. "Two Factor Auth (2FA)". Retrieved 12 December 2016.
- ^ "Plus addressing to filter email". Retrieved 18 October 2016.
- ^ "Mailfence Release Notes March 2018". Retrieved 13 March 2018.
- ^ "Blacklist a specific sender address". Retrieved 23 July 2019.
- ^ "The Mailfence SSL/TLS Certificate". Retrieved 10 June 2016.
- ^ "SSL Report: mailfence.com". Qualys SSL Labs. 10 June 2016. Retrieved 14 January 2021.
- ^ "DANE SMTP Validator". Retrieved 14 January 2021.
- ^ Sparrow, Elijah. "OpenTechFund/secure-email". Retrieved 9 September 2016.
- ^ "Mailfence end-to-end encryption and digital signatures". Retrieved 25 July 2016.
- ^ "The 3 Most Secure & Encrypted Email Providers Online". Retrieved 20 January 2017.
- ^ "Password encrypted messages based on symmetric encryption". Retrieved 1 September 2016.
- ^ Thomas, Mike. "A (mostly) In Depth Review of Mailfence". Archived from the original on 20 December 2016. Retrieved 1 September 2016.
- ^ Schürmann, Dominik. "OpenPGP Email encryption. For all operating systems. Standing the test of time". Retrieved 1 September 2016.
- ^ Tschabitscher, Heinz. "Encrypted email services keep your messages private". Retrieved 3 June 2018.
- ^ "Mailfence's OpenPGP keystore gives full control over key management". Retrieved 17 May 2017.
- ^ "Encrypted email service providers". v. Archived from the original on 18 May 2016. Retrieved 25 May 2016.
- ^ "Transparency Report and Warrant Canary". Retrieved 29 April 2016.
- ^ "Service review". Retrieved 20 February 2019.