Google has released the alpha version of source code for End-to-End, a Chrome browser extension that encrypts email.
End-to-End uses the OpenPGP standard to encrypt, decrypt, digitally sign and verify signed messages within the browser.
“We’re just sharing the code today so that the community can test and evaluate it, helping us make sure that it’s as secure as it needs to be before people start relying on it,” Google said. It will offer a bounty for bugs found, under its Vulnerability Reward Program.
End-to-End encrypts only the body of Gmail messages. The email subject line and the list of recipients remain unencrypted, as is the norm for messages encrypted with OpenPGP.
There are currently no plans to implement End-to-End on mobile devices, because Chrome on mobile devices doesn’t support extensions.
Sourced by Tennessee Frank