Suggestion: Zero knowledge encryption for Labels.

mozilla / fx-private-relay

Keep your email safe from hackers and trackers. Make an email alias with 1 click, and keep your address to yourself.

https://relay.firefox.com

Other

1.44k stars 168 forks source link

Suggestion: Zero knowledge encryption for Labels. #1448

Open ghost opened 2 years ago

ghost commented 2 years ago

It would be great if the labels for each address were encrypted, so that they are only readable by the account owner. It feels slightly unsettling that there is an unencrypted list of all the sites we are signed up to. Apologies if this is already the case, I can't find any mention of it.

Vinnl commented 2 years ago

Hi @Oryoro, they are not currently encrypted (so I will keep this issue open), but in case it's of interest to you: in the settings you can disable server-side storage of labels. If you have the add-on installed, labels will still be available, but will only be stored in your local Firefox instance. (Do keep in mind that that means you can't access them on other devices.)

groovecoder commented 2 years ago

Thanks for the issue. It's possible to use FXA Scoped Encryption Keys for our data, but there's some trade-offs:

We need to change the add-on to authenticate directly with FXA so it can retrieve the keys
Any other clients (e.g., your mobile browser) would also need to authenticate to FXA to retrieve the keys
It will lock us into FXA as the only authentication backend

Like @Vinnl says - you can definitely disable the server-side storage of labels to be extra cautious until we have an end-to-end-encrypted solution in place.