π

A Whitepaper Criticizing ProtonMail Security

Show Sidebar

A couple of days ago, Nadim Kobeissi from Symbolic Software published this PDF whitepaper where he analyses the security of ProtonMail, a swiss-based email provider.

With the end of Lavabit, many security- and privacy-concerned people switched to ProtonMail. This is why ProtonMail security is relevant.

The Conclusion chapter of the whitepaper starts with following paragraph:

Our findings, presented [here], constitute serious shortcomings in ProtonMail's cryptographic architecture that we believe should be urgently remedied. As it stands, ProtonMail does not meet its self-professed security goals when these are subjected to analysis.

The ProtonMail blog does not list any reaction. However, they are pretty busy with their Twitter account and refer to this reddit thread where they discuss with Nadim.

Comment via email (persistent) or via Disqus (ephemeral) comments below: