Usage FAQ

I know nothing about encryption. Do I need to learn?

No. Just use email as you normally do. EasyCrypt will manage encryption transparently.

Do my recipients need to be EasyCrypt users?

To exchange encrypted emails with you, they need to subscribe to EasyCrypt (easy) or use a PGP-enabled email client (more difficult).

 

If they are neither EasyCrypt subscribers nor PGP users, your emails to and from them will not be encrypted.

How much will it cost?

The basic version is free and will remain free. We will be introducing paid versions with advanced features in the future.

Where are your servers?

In a secure data center in Zurich, with a backup site in Zug, Switzerland.

Do I need to switch from my email service provider?

No. You can use EasyCrypt with any standard email service provider. 

Do I need to install a browser extension?

No. You can use EasyCrypt Secure Webmail with Chrome, Firefox, Safari and Tor browsers without installing anything.

 

If you use Safari, please make sure that it is not in Private mode.

 

Do you store my emails?

No. Your emails are stored as usual by your existing email service, such as Yahoo Mail or Gmail or your employer’s Exchange server. 

I use Gmail. Will EasyCrypt prevent Google from scanning my messages?

Yes. The messages will be unreadable by your email service provider or any other party that has access to your service provider’s servers.

Will EasyCrypt encrypt the unencrypted messages in my email account?

No. Only the messages that you send or receive encrypted via EasyCrypt will be stored in your email account in encrypted form.

 

The rest of your messages will remain unencrypted and you will be able to read them using either EasyCrypt or any other email client/webmail.

Is EasyCrypt able to read my encrypted messages?

No. Your messages are encrypted on your computer or device and are decrypted on the device of the recipient. Nobody in between can read your encrypted messages, including EasyCrypt.

Is EasyCrypt able to read my unencrypted messages?

EasyCrypt is unable to read your unencrypted messages when you are not using EasyCrypt.

 

EasyCrypt provides a much stronger account security than email service providers. Technical details are here.

 

Will you disclose my keys or messages under a subpoena?

We are technically unable to do so. Only you and your intended recipients can read the encrypted messages.

Do I have to use EasyCrypt client to access my email account?

No. You can access your email account using any standard email client, as usual. When you do so, you will not be able to send or read encrypted messages. You can switch between EasyCrypt and another email client any time.

Can I use EasyCrypt on more than one device?

Yes. You will need to install EasyCrypt client or plugin on each device. EasyCrypt will automatically synchronize your devices.

 

You can also use EasyCrypt Secure Webmail via a browser. No installation is needed for this.

Do you have Android and iOS apps?

Not yet, but we will.

Will EasyCrypt support IMAP and desktop clients?

Yes. We are currently developing EasyCrypt plugins for popular IMAP email clients.

How can I invite my friends?

Click the green Invite icon next to their email address. You can also invite several friends at once by clicking the Invite icon on the top menu.

Can I communicate securely with friends who use PGP but have not joined EasyCrypt??

Yes. To set this up you need to:

 

1. Ask your friend to send an email to registerpublickey@easycrypt.co, with their public key attached.

 

2. Click “Attach public key” while composing a message to your friend in EasyCrypt. Your friend will know what to do with it.

 

After this, your communication with your friend will be encrypted.

Will I be able to recover encrypted messages if I forget my password?

No. In such case the decryption of your encrypted emails will be impossible. We will be technically unable to help you.

To prevent this from happening, you should write down your password and store it in a safe place.

Anonymity and metadata protection FAQ

Can I access EasyCrypt Webmail over Tor, at an onion address?

Yes. The onion address of EasyCrypt Secure Webmail is webmail.ezcrypt2dgcicxqj.onion. You can only access it using Tor browser.

Is metadata protection available in the beta version?

No. It will be available in a future version.

I communicate with other EasyCrypt users. What will an intruder learn by inspecting the messages in my Inbox and Sent folders?

The intruder will learn when the emails were sent, and their size. Nothing else.

Nothing? No names, no email addresses, no contents, no attachments, no subject, no IP addresses, no other data or metadata?

Correct, none of those. Your email address will be shown, but since the intruder would be inspecting your mailboxes, there is no new information in it.

What about messages that I exchange with an external PGP user?

In this case the intruder will also be able to read the subject, the email addresses, and the entire metadata – IP addresses, transmission path, email clients used etc. This is how OpenPGP works. Only message body and attachments will be encrypted.

Will the subject of my messages be encrypted?

Yes, if both you and your recipients are EasyCrypt subscribers. If your recipient is an external PGP user the subject will not be encrypted, as this is not supported by the OpenPGP standard.

How can I be anonymous if I send and receive emails at my existing email address?

EasyCrypt hides your email address behind one or more pseudonyms of your choosing. The messages traverse the network under a pseudonym.

If I choose to be anonymous, will EasyCrypt know that I am the author of the emails that I send?

In case you are communicating anonymously with another EasyCrypt subscriber, your identity will be hidden both from the subscriber and from EasyCrypt.

 

In case you are communicating anonymously with a user who is not a subscriber of EasyCrypt, your identity will be hidden from the user but not from EasyCrypt. 

Can I communicate under a pseudonym with an email user who does not subscribe to EasyCrypt and does not encrypt?

Yes.

Advanced FAQ

Will EasyCrypt be released in Open Source?

Yes. The source code of our clients as well as of our network transport and anonymization servers will be published. We will publish the source code after we reach a reasonably stable version.

Was EasyCrypt audited by independent security experts?

Not yet. We certainly intend to submit EasyCrypt code for such audit in the future, once we reach a stable software version.

Which Certification Authority provides your TLS certificates?

SwissSign, a subsidiary of Swiss Post.

Does EasyCrypt allow TLS/SSL connections without Perfect Forward Secrecy (PFS)?

No. PFS is strictly enforced. Users who use outdated browsers that do not support PFS will not be able to connect to EasyCrypt.

Does EasyCrypt support signing outgoing messages?

Not yet.

I am already using PGP. Can I switch to EasyCrypt without losing my messages?

Yes. You can import your existing PGP keys. You will then be able to read the PGP-encrypted messages that you had sent or received before you joined EasyCrypt. You can also export your PGP keys.

To be on the safe side, I also want to have a local backup of my keys. Can I?

Yes. You can export your public/private PGP key pair to a file, encrypted by your EasyCrypt password. You can then import it back into EasyCrypt or into any PGP client

Is it possible export the EasyCrypt secret key for use in Thunderbird/Enigmail?

Yes, and we certainly recommend that you do so.  If something happens to your EC account, you will be able to access your messages using Thunderbird. It’s a perfect backup.

 

How? In EasyCrypt webmail, click Gear icon > Account > Advanced > Export keys.

 

Note that when you export your keys, your private key is encrypted by your EasyCrypt password. After you import the keys into Thunderbird and open a message encrypted in EasyCrypt, Enigmail will ask you for a password. You should respond by typing your EasyCrypt password.

 

You can also do it the other way around – import your keys from Thunderbird to EasyCrypt.

I am a PGP user but I am not sure whether I want to join EasyCrypt. What are my options?

You can make use of EasyCrypt even if you do not switch to it as your main email encryption platform. Please see the Guide and FAQ for Existing PGP Users.

Can you provide more technical details about the operation of EasyCrypt?

Ask a Question

Email (required)

Your question

Send this to a friend