Bitmail: a decentral end-to-end encrypted P2P email client

bitmail

Email without the use of proper encryption is inherently insecure. The main reason why the majority is still not encrypting their emails is convenience, or a lack of thereof.

We have seen announcements and talks about new email services that try to change all that, but there has not been anything created yet that you can make use of.

Cassiopeia's BitMail is a free decentral end-to-end encrypted email client for the Windows operating system. The service uses a whole array of security protocols and technologies to protect the contents of emails and your identity while you are using the program.

Note: BitMail is Open Source, and requires an independent security audit that verifies the applications security.

When you first start the program -- an installation is not required -- you need to select a passphrase that you want to use for protection. Cipher, hash and key size are set to aes256, sha512 and 2048 by default, which you can modify. You can change the cipher to camellia256, serpent256 or twofish, the hash to tiger or whirlpool, and the RSA key size to up to 15360.

The creation of the key may take a moment, and you may notice the program freezing during that period. This should not be cause for concern, as it will recover from that eventually. It is highly recommended to select a large passphrase to make sure the mailbox is properly secured.

All that is left then is to activate the kernel, which the program suggests to do, to get started.

Once that is done, you either need to create a BitMail Server from within the program, or connect to an existing BitMail Server.

You find your public email and chat keys on the Connect to BitMail Server page in the program interface. Use it for sharing with others, so that they can contact you using the application.

The program itself supports email and chat, with chat being the easier service to setup. Once you have selected the passphrase and started the kernel, you can switch to the Developer IRC tab to connect to a chat network to chat with contacts using the same level of encryption and protection that the program uses for emails.

If you do not have access to a BitMail server, you need to create one. To do so, you need to select an IP address, port and other parameters for it. This means that your computer has to be online for the ability to connect to the server.

Emails can be stored in the P2P network for offline friends, so that they can access them when they come online next time, regardless of whether you are online as well or not.

Participants need to add contacts to the address book. They can either add BitMail users or IMAP users to it by copying their public keys or email addresses and names in the form fields on the address book tab.

Closing Words

BitMail, as secure and protected as it may be, is too complicated to use for the average user in its current state. What I mean by that is not only the creation of the account, which is fine by itself, but also the interface and how everything is handled.

Chat is the one thing that seems to work just fine, and if email would be as convenient to use as chat, it could have a future.

Since that is not the case unfortunately, it is likely that it will remain a niche product.

facebooktwittergoogle_plusredditlinkedinmail


Filed under:

Responses to Bitmail: a decentral end-to-end encrypted P2P email client

  1. imu December 30, 2013 at 1:14 pm #

    "BitMail, as secure and protected as it may be, is too complicated to use for the average user in its current state"
    This reminds me of Yacy another decentralized technology trying to reach more users but people always choose convenience over security if the second require any tweaking.We live in plug-and-play era Martin :)

    http://yacy.de/en/index.html

  2. imu December 30, 2013 at 1:35 pm #

    Recently a friend of mine wanted to show me something she found online so I handed her my laptop and the first thing she did was typing google into startpage :)

    • Martin Brinkmann December 30, 2013 at 2:04 pm #

      I will post all of the stuff there that I come across that I do not write about on Ghacks. Also, all the stuff that I cannot write about here ;)

  3. imu December 30, 2013 at 1:44 pm #

    BTW. Those links you have posted at forum they are fantastic give us more:)

  4. Mystique December 31, 2013 at 1:13 pm #

    As sad as it is people use google because it is familiar and seems to be more thorough as apposed to something like startpage which claims to scrape from google but the results are wildly different, good old scroogle on the other hand was the best but was shutdown by google as soon as it become more popular (surprise! surprise!).

    As far as this client is concerned there are a few issues, the biggest hurdle is convincing everyone on the face of the earth to dump their webmail or there current client in favor of this, you couldn't just email anyone with this client and expect people to understand it and email you back.

  5. David January 10, 2014 at 9:10 pm #

    This needs to be a Thunderbird/Postbox extension. A quick search reveals it is at least possible to set up but an extension might make it popular.
    Nice site btw.

Leave a Reply

Subscribe without commenting