Hi DC, your problem has already benn solved, the AES end.to.end key can (and is often ) be transferred in a GnuPG like secured environment, e.g. like http://goldbug.sf.net - a full p2p decentral Email client - is using it. Does your service use a central approach? as only client side is secure, you need clients to be in use.
2013/8/23 DC <dcpo...@cs.stanford.edu> > Hi everyone, > > I'm DC, and I've been lurking here for a few weeks :) > > Since the NSA leaks, I've been inspired to work on an old dream: > end-to-end encrypted email. > > One difficult problem in public-key encryption is key exchange: how to get > a recipient's public key and know it's really theirs. > >
-- Liberationtech is a public list whose archives are searchable on Google. Violations of list guidelines will get you moderated: https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, change to digest, or change password by emailing moderator at compa...@stanford.edu.