In terms of email security, standards-based is bad. The email standard was originally designed for an academic environment where security was not an issue and security was never built in. Since then, any security it has has been tacked on. Proton seems to be pretty secure and their encryption model is good. Tuta is a bit better. Their encryption now is quantum safe. in both cases for full security both parties in the email communication have to be using the same service. I see that as natural and correct and it’s likely to be the way everything works that is secure until security becomes part of a communication standard that everyone uses for email. And I don’t expect that during my lifetime.
3 Likes
I have both of them atm. Proton aliases look good.
Can you please compare and contrast these with Thunderbird?
Accepting your proposition that their security protocols are superior,
what differences (from Thunderbird) in daily use should one anticipate,
please?
Thanks
Trying to compare a Thunderbird with Tuta or Proton is a little bit like trying to compare apples and Chevrolets: They are not in the same category. Tuta and Proton are services that include email, Tunderbird (and K9) are general email CLIENTS. More appropriate would be to compare tuta or proton with exchange as a service for Microsoft’s Outlook 365. Each of them has a dedicated client but you can use the website. However, all of your email from one Tuta member to another is encrypted. All of your email from one proton client to another is encrypted. And if you are using their client on your platform rather than the web interface, it is point to point encrypted, so even they can’t read your emails. There is no Thunderbird server, it is strictly a client that primarily does pop or iMap, but can also do exchange. It is one of the clients that you can add encryption to, but then you have to coordinate keys with the email receiver and keep a key database. (with the right tools that is automated and you don’t have to worry about it too much, but it still takes manual intervention. With Tuta and Proton, it is fully automated, and requires no intervention on the user’s part. It is transparent and the client will warn you if you’re sending email to someone that is not on the service and therefore it will not /cannot use the encryption.) both of them now, you can integrate with the calendar from the same server and it encrypts and protects your calendar entries. So there is a feature set that is very similar to Thunderbird, but whereas Thunderbird will work with any server, the clients for Tuta and Proton only work with the server they are made for.
1 Like
Thunderbird (TB) is plain a MUA (Mail User Agent) that speaks IMAP an SMTP (and if anyone still wants, POP3). So you need a mail provider.
There is no security or privacy due to the weaknesses of the century old 
protocols, unless you employ OpenPGP. Neither Tuta nor Proton support IMAP or SMTP. For both TB won’t work. You have to use webmail and/or the according app. OTOH, they offer secure encryption if you communicate with partners from the same provider.
Thanks for clarifying things!
1 Like
Of note Proton actually allows for PGP keys aswell as a compatible bandaid solution if you need to communicate more securely with someone via Email and they for one reason or another refuse to use Proton. It won’t be as secure as communicating with a Proton member directly of course but it’s definitely a whole lot better than nothing
https://cock.li - they exist
there’s a hip new unsocial way called tyr as well
1 Like
Disroot
Tutamail
Protonmail
1 Like