Email is the oldest Federated service. (lemmy.world)

submitted 1 year ago by nodsocket@lemmy.world to c/technology@beehaw.org

27 comments fedilink hide all child comments

I was struggling to wrap my head around how federated social media works until I realized that email has basically been doing the same thing for 30 years. Different email servers are like instances of a federated network. You can send emails to people from within a single server or you can send emails to people on any other mail server. Your email address is a username followed by an '@' and the server address, just like on Lemmy. Email is a decentralized service I've been using the whole time!

you are viewing a single comment's thread
view the rest of the comments

[-] nodsocket@lemmy.world 1 points 1 year ago

Absolutely. Now we're stuck using a protocol that has zero encryption because decades ago no one thought about that. All our private correspondence is readable by every ISP and government it passes. If only we could make an email 2.0...

[-] zergling_man@lemmy.perthchat.org 1 points 1 year ago

No, encryption was considered. It was supported from pretty early on via PGP. If you check out decent mail clients (obligatory digdeeper), you'll find the tooling.

[-] eddythompson@beehaw.org 1 points 1 year ago

PGP email has nothing to do with the email protocol. All your message metadata and headers are still not encrypted/can’t be encrypted. You can only encrypt some payload with a PGP key, and it’s up to the receiver to figure out whether or not they want to trust any of the message metadata. The entire envelope is still plaintext everywhere. PGP email is just email, but you’re sending some random encrypted text in it.

[-] damn@lemmy.fmhy.ml 1 points 1 year ago

Email with PGP is very far from secure. No forward secrecy (one mistake and the entire thread history is revealed) and metadata is unencrypted.

[-] TheYang@lemmy.ml 1 points 1 year ago

I mean, it's not like theres really anything stopping the big providers to implement PGP on top of Email.
They just don't, because users don't care. So you have to do it yourself, in a plugin or whatever.
Still works, just more cumbersome, but I wouldn't blame the protocol... at all.

[-] nodsocket@lemmy.world 0 points 1 year ago

Adopting a consistent way to do it that everyone agrees on is the hardest part. PGP works but you have to make it easy and integrate it with all the top email providers so that most people are using it without even noticing.

[-] TheYang@lemmy.ml 1 points 1 year ago

you wouldn't even relly need to find one consistent way, just identify the way servers do it, and have a list of supported methods.

let's say there are implenetations a,b,c, and d
if let's say google supported b,c and d, and apple b, and hotmal c and d, only hotmail-apple traffic would be unencrypted as they can't agree on a common method.

pretty sure that's how TLS (i.e. https) works.

[-] unique_hemp@discuss.tchncs.de 1 points 1 year ago

It used to, but v1.3 supports only 3 ciphers now.

this post was submitted on 11 Jun 2023

7 points (100.0% liked)

Technology

37621 readers

421 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:

This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago

MODERATORS

alyaza@beehaw.org

TheRtRevKaiser@beehaw.org

gyrfalcon@beehaw.org

rs5th@beehaw.org

coldredlight@beehaw.org

Los@beehaw.org

SemioticStandard@beehaw.org

TheRtRevKaiser@kbin.social

remington@beehaw.org