I don't want to be a defender of snake-oil email providers but I think a 'secure' e-mail provider hopefully does more then just GPG to other users.
They hopefully have a good secure authentication system (Protonmail just added SRP and 2Fa) and hopefully have correct policy for things such as DKIM, SPF.
They hopefully also keep up with security updates and stuff like that.
Doing these things seems normal to many, but the reality is that many E-Mail providers have non of those things.
They hopefully have a good secure authentication system (Protonmail just added SRP and 2Fa) and hopefully have correct policy for things such as DKIM, SPF.
They hopefully also keep up with security updates and stuff like that.
Doing these things seems normal to many, but the reality is that many E-Mail providers have non of those things.