[Bug 94114] posibility to encrypt received unencrypted emails

[Hauke Laging]

https://bugs.kde.org/show_bug.cgi?id=94114

--- Comment #7 from Hauke Laging <hauke at laging.de> ---
(In reply to comment #6)
> Instead of creating a new feature request, please confirm here if the
> wishlist is still valid for kmail2.

Still valid.

And I would like to extend this feature wish by something that is technically
very close:

Keys get revoked. And of course, you never know when. The moment a key is
revoked all its signatures become worthless – unless you can prove (or be sure
if it's for yourself only) that the signature was made (long enough) before the
revocation. The protection if IMAP accounts is many orders of magnitude weaker
than that of crypto.

Thus it would be nice if KMail was able of signing incoming emails. Technically
it is AFAIK not possible to sign an already signed email without breaking the
message format but instead an additional IMAP mailbox could be created where no
email format messages are stored but simply the detached signatures of the
normal emails. Those signature files could be named by the message IDs or by
the hash values of the emails (or just of the signed part). The last step to
happiness would be to prepare for further handling of these signatures by the
option to deliver them locally to some program / script (which may request a
crypto timestamp from a third party in order to be able to really prove that
the signature is valid in case it gets revoked later).

-- 
You are receiving this mail because:
You are the assignee for the bug.