Proton has just announced post-quantum encryption support in Proton Mail.
9 Likes
Post-quantum protection is now an optional upgrade in Proton Mail, available on all plans including free. Once enabled, Proton Mail can generate and use post-quantum-ready keys for new encrypted emails to protect your personal messages and business communications against today’s threats and a future where current public-key cryptography may no longer be enough.
Excellent to see this not paywalled. But I also hope to see this be enabled by default going forward for all and all new accounts.
4 Likes
A better approach is to ask the user while setup instead of enabling it by default.
If your partner with who you are chatting does not support this algorithm, which is very likely for now, you can not use encryption at all.
2 Likes
That’s why I also wished this be auto enabled for all accounts and all new accounts.
2 Likes
The support page is informative too:
They could still generate Curve25519 keys as a fallback, which is the case for users who are enabling post-quantum keys now.
2 Likes
Yes! I was just about to say this checking the details again on my end. The fallback exists to there’s no real downside.
2 Likes
Do you guys have syncing problems with proton drive once the new post-quantum encryption activated in proton mail?
1 Like
No? The transition to PQC only applies to Proton Mail thus far afaik.
I don’t think so. If you go to Settings > Encryption and keys it shows the Email encryption keys and the Account encryption keys, both are updated with the new post-quantum encryption.
Now from my Proton Drive app I can’t upload and sync any file, I get an Invalid manifest signature error.
There are now PQC account keys, but they don’t seem to actually be used for Proton Drive. In my logs, I see the fingerprint for my Curve25519 account key.
Yes.
You too with the windows app?
I tried to uninstall and reinstall with no avail, quite annoying.
I’ve opened a ticket with the Proton support service.
1 Like
Windows.
I saw the post and tried to migrate to PQE keys but i don’t have that options on any of my paid accounts. Is it regionally released or something? I tried on the linux app and on broweser with no avail.
If you click on the link in the article, it will take it to your account page for you to enable if you’re logged in. Also, it should be available for all types of account, free and paid.
I think it might be, or there’s some cache trickery going on with their Content Delivery Network (CDN) or something. I also have a paid account and do not see the relevant setting when clicking on the link in the support article, even if I do a hard refresh (Ctrl + F5).
Yes i read both sites but following that i don’t have that option. in Encryption and keys I only have:
- Address and key verification
- External PGP settings
- Email encryption keys
- Account keys
Same issue here. Can’t find relevant options when accessing through web.
yes i don’t see the option for pqc as well in my settings. I don’t recall they said this was a beta feature or something. According to their article this is available to free tier as well so it should be available to all.
Hopefull they roll out to everyone soon.