YTread Logo
YTread Logo

Most Secure Web Email Provider + Review of Web-mail Security (2016)

Apr 09, 2020
welcome to desk geek, today I'm going to delve down the rabbit hole of

e

mail

security

. This will certainly be one of those videos that is open to scrutiny and a lot of people having very strong feelings about

security

and what it is. the

most

secure

way to encrypt and protect yourself and all the plethora of options that are available to do that, but what I'm focusing on in this video is encryption for web

mail

, are there more

secure

options than the mail interface Web? Yes there are third party plugins, there are options to host your own server, there are all kinds of ways to protect your

email

, but I'm specifically looking to make a video for regular users who aren't interested in going through the setup steps. your own server or have the knowledge to do so and something you can easily set up, as easy as getting a new Gmail or Yahoo account, something you could teach your grandmother to do and will give you an extra layer of security and It's important to have Keep in mind that no matter what service you use, even if you are hosting your own server, even if you are using the best third party plugin ever invented, it still has security loopholes, there are still ways to compromise data that exist.
most secure web email provider review of web mail security 2016
If there wasn't perfect security, then this video would be very short. I would announce it and we would be done, so what I wanted to do is talk about the

most

secure online email or webmail platform, like webmail like Gmail, Yahoo, Outlook, etc., so what? This video doesn't cover all of those other options in detail, but at least it breaks down the premise of security and opens it up for everyday users and the public and even those who have experience to start having those discussions about security because it's becoming a great topic. problem at the moment, so my qualifications for this were number one, it had to be a webmail service and it had to have support for mobile applications, number two it had to have encryption, multi-stage password protection, a policy against the delivery of secure user data, a user-friendly cost structure. so it didn't cost a lot of money for strong spam filtering and the security is updated regularly and the platform is under constant scrutiny so being something open source it had to have limited user information collected so IP metadata that kind of thing had to be limited. or non-existent, which is why there are many companies emerging right now that claim to have strong security for their email platform.
most secure web email provider review of web mail security 2016

More Interesting Facts About,

most secure web email provider review of web mail security 2016...

Most of us were supporters of services like lava bit um, but we know that the lava offering eventually had to collapse and it did. so stand firm by not complying with government orders to hand over encrypted data, so I think it's very important to praise these companies that are fighting this battle as Apple and everyone else have discovered that this exploit can be exploited and not there's perfect security, but at least they're going in there and they're trying to provide something that protects your data, so I want to talk first about the most popular email services out there, like Gmail, Outlook, and I think Yahoo Gmail is probably the one. largest email service.
most secure web email provider review of web mail security 2016
Certainly, if they are not the largest, they are right next to the largest. I don't know who would be bigger than Gmail, maybe Outlook if you counted the entire Enterprise tier. implementations, but Gmail is certainly what most people have used and has a large number of users, so GMail offers the simplicity that they brought to the market, providing that free platform with that little counter if we all remember when Gmail was launched and you had to get an invite and you had this counter that kept going up and up showing you all the storage options. It's really been kind of a reference email.
most secure web email provider review of web mail security 2016
Now Gmail has some level of encryption and they have worked on it. They've spent years improving that, so now they have encryption notification support, so when an email is sent to you, there's a little icon in the right corner that shows a little padlock. And if it is unlocked, the email was sent to you unencrypted if it is locked. it was then sent as an encrypted message, so at least they have that support there, but I think it's largely ignored by most users and their encryption usually uses some form of TLS. TLS is a system that helps ensure that messages are not tampered between the receiver, the server and the recipient, the sender server and the recipient, so the fact that Google is inserting some of these encryption options into its server of email is good and opens it up for users who are paying attention to that lock to complain to companies that don't send their messages encrypted etc., they also use https, so a secure version of HTTP um on their servers, so that that's nice when you log in and it's a standard now and I really changed the game with that because a lot of people thought https was going to be too slow, but a while ago Google went and found a way to get the performance where it needed to be and use it as standard, but I still see Banks and and other companies sending completely unencrypted emails, which blows my mind since the little red padlock in the right corner is open.
So why does all this matter? Encryption only works well if there is end-to-end encryption, so if there is any break in between. the sender that can encrypt their messages very well and the server that may not have encryption and in the case of Google it does have a level of encryption and then the receiver, the receiver that receives the email, if it does not have any level of encryption, so it's open for anyone to take advantage of, so even though I'm talking about Google, they have good standards, it's a very basic level of encryption and protection.
Certainly more can be done there. I will applaud Google for the fact that they are at least in the fight. They are certainly helping with regulations in the government to try to stop some of the massive data grabs and allow other companies to implement encryptions without having to have a backdoor key, so Google is fighting that fight at the same time as you are also subject to the laws here and they have handed over or been forced to hand over user data, which means that within Google's server that other area once you send that message, even if you send it securely, Google has an encryption key that can be provided to a government or someone else where they can decrypt your message and still be able to access it and because they store those keys, your data is now open to capture, so to count on Google , Gmail, has https, has man-in-the-middle encryption, which means that's what I call encryption on your server, although it can be overridden, they have an encryption notification, which is good for a wide audience to get used to see that and understand what it is.
They have two-step authentication and USLS. Its weakness is government regulations. they can replace the keys for encryption can be acquired uh and there's not necessarily a requirement for end to end encryption, so the information that gets to the users, etc., there's no expiration of the messages outside of the plugins. third parties and such, so you can keep your messages safe even if you're sending to an unsecured source and Google, of course, has a lot of ads and metadata capture going on, so you have to deal with that too, so next, I'll quickly talk about Yahoo, so Yahoo has at least joined Google in trying to push end-to-end encryption and offer some add-on support for their model, but they lack really strong multi-step authentication.
It's there, but it's not as standardized as I would say Gmail is. meaning it doesn't require you to use multi-step authentication as often as Google does nor do I think it's as secure. There is also limited spam and advertising protection here. Yahoo seems to be one of the worst at running ads everywhere. your face and spam and spam is out of control on Yahoo mail and in my experience with it so there are a lot of open security loopholes that I think can be compromised, they have also given the government their encryption keys under order. uh in certain cases, or I've been informed that they allow me to say protect myself, so they have https, which is great, their support pages are very poor and even though they exist, they talk about their SSL support, uh, it's really everything I could find, but We are certainly not educating or working to educate the user base in any way that you could easily find about security and what their security protocols and standards are, so they definitely fall behind Google in that area.
Although it is the worst, while Google has the most information of the three that Yahoo had was Outlook. I'm talking about Outlook Web Mail. I know they support https, but they've largely been silent on what I could find in any discussion of their encryption or security. interfaces they use now, if you're talking about Outlook in an enterprise setting, there are lots of options for encryption plugins and options within the tool itself to enable encryption etc., but if you're talking about their webmail platform, I couldn't find nothing there. talking about what they try to do to protect your information, so I thought, surprisingly, out of all of them they probably failed the most, their spam protections are pretty good, and I think their interface is gorgeous, they've done a lot of work there, but I think I think They certainly could do more to educate users of their webmail platform about the security they are implementing and using.
Now that we've covered those big three, I want to quickly talk about my findings in searching for a good secure webmail app. So there are services like Hushmail that offer end to end encryption but they are expensive so they charge for their services and if I remember correctly it was around $50 or something to sign up so I think that requires the Most. For people who are used to webmail, I know that free is not really free and we all need to change the way we think about it, but because it has an initial cost and the features it uses, which is the type of encryption end to end. with passphrase and stuff like that, every time I send an encrypted email, the other party has to have that phrase in order to open it, which is great, but there aren't many people I communicate with via email that I go to to hand over.
Sending passphrases to get them to open my business partners' email and that sort of thing, yes, but otherwise probably not, so I'm not sure I'd be willing to suspend that kind of money. I'd probably just set up my own server to do that. At that point, enough of filling our brains with all this information about the different

provider

s that exist. Let's talk about the winner, so to speak, or the one I selected as the best or most secure platform out there and you've already seen it. You've been looking at it all along, it's male proton, so first its servers are located in Switzerland, which means it's much more protected from government data seizure orders.
Switzerland is known for having some of the strictest privacy laws and is a really good country. election to host a service now, because of the attx and parison stuff, there are some concerns that Switzerland may be subject to some broader laws that are trying to be passed, but there is no indication that one way or another it will affect the services like proton mail, so, at the moment, I think it is the best option for storing data on servers because Switzerland is known for having very, very strict laws. There is an important encryption. Protons can't receive your emails and don't have keys to do so, so this is a The multi-step login process when you sign up is very easy to sign up just like you would with Gmail, but when it asks for two passwords , the first is to log in to your service and the second password is a hash or a passkey that will decrypt all the messages in your email box and you do not have access to that passkey, so that they can't give it back, they can't restore it, they don't know what it is.
It's yours and yours alone, so it's a really good security measure, there's no IP address logging, it's 100% free so you have no upfront cost to get in and play with it, there are no 30 third party plugins, they are needed. or necessary to get started, the design, the interface in their email is absolutely beautiful, there is extensive spam protection, they use https, they have encryption standards like RSSI and they open pgp, some of the ones I have listed are a little less secure than others, but They use a combined combination of those three, which I think is quite powerful.
They are also open source, so they took their code and turned it into codeopen, which is really important. What that means is that the open source community has the capacity. to then go and examine and find security holes and then they can react to that and we know how much the open source community has really changed security around the world and helped drive this message and the changes that we've needed in security. So it's a very important step they've taken - there are no ads or metadata capture which really puts it in a league of its own when it comes to webmail and they also have expiration capability which means you can expire your messages, so proton mail.
It was a crowdfunded project by some very smart people who were able to set up these servers and apply some security standards based on their previous security and web knowledge and you can go over their whole history and about the company and everything related to yours, but It's actually a very interesting story, and I think they've come a long way now if you're Edward Edward Snowden or anyone you know the government is tracking you or the government really wants your information. This will not be the perfect solution for you. This is only meant to add extra layers of protection for everyday users.
Provides a good level of protection. Least spam storage service I could find, that being said, there are always loopholes in any security algorithm and if you look hard enough you will find that there are some for proton males meaning someone can easily come and take them. that security loophole and finding your information and taking and stealing your passwords no, it would be very, very difficult and someone will have to really want your information and it will be a sophisticated trick to be able to do it, eh, but it's not impossible, it would just be really very difficult , so I think this is the best Webmail service to get people thinking about better security to get them away from this metadata hoarding.
They offer donation options and you can also sign up for additional storage space and here's how they do it. your money so I highly recommend you support them because they don't flood and steal your data and look at what you email and all that like a lot of the other services do so let's take a quick look at your inbox . in Proton Mail, so here you have a very clean and beautiful setup here you have your inbox, draft sent, start file, spam bin, you have labels like Gmail has when you compose an email, you can see dasgeek protonmail.com , you can send it, you know who you want.
To the point, a very, very familiar interface, there is nothing here that should be really confusing. Down here where you have additional options, this is where I can send an expiration time so that the email will automatically delete itself after a certain period of time so they can do that. I don't read it anymore, it's a really very powerful option for security and I love it, and the next one is the encryption option, so when you choose this, you'll set up a message password and then you can set up a hint if you want and that person has You have to have that password to be able to open that email and this is what it looks like, so it won't connect through Gmail to capture that password, it will send them the email and say it's encrypted. they have to click on the link when they click on the link, it will send them through the proton mail servers, they will type the password that you have given them probably in a conversation on the phone or somewhere else and you click. decrypt and once that happens you can see you have this test email here and it automatically tells you when you encrypt that the message will expire within 30 days so you don't have to have a proton email account to use it as an option for them to sign up, so that's it, it's the most secure webmail service I could find.
I would be very interested in any alternative options you have discovered specifically that fit the ratings of this video. Here we will see how to do others. videos to set up your own server and open pgp and do a few different things it can protect and make an email server even more secure but for the average user I think this is the best option it also has support for android and iOS apps , so all the features that you love about the service like Gmail are available for Proton Mail and even with iOS it uses fingerprint scanning to help you get into the initial Proton server, so it definitely has a lot of ease of use.
I have come to know about it from Yahoo Gmail or other services, so again, this video is not intended to tell you what is the safest option that will keep you safe from any type of government entity or anything else. It is the safest option I know of. You might be able to find a webmail service that fits those qualifications, so wait for the discussion. I hope you go out and sign up for Proton Mail. Please consider making a donation to them or signing up for some of their improved services because they are doing something really good here.
I love it and I think your service is great so until next time I'll talk to you guys later.

If you have any copyright issue, please Contact