Suggestion: Zero knowledge encryption for Labels.

[ghost]

It would be great if the labels for each address were encrypted, so that they are only readable by the account owner. It feels slightly unsettling that there is an unencrypted list of all the sites we are signed up to. Apologies if this is already the case, I can't find any mention of it.

[Vinnl]

Hi @Oryoro, they are not currently encrypted (so I will keep this issue open), but in case it's of interest to you: in the settings you can disable server-side storage of labels. If you have the add-on installed, labels will still be available, but will only be stored in your local Firefox instance. (Do keep in mind that that means you can't access them on other devices.)

[groovecoder]

Thanks for the issue. It's possible to use FXA Scoped Encryption Keys for our data, but there's some trade-offs:

• We need to change the add-on to authenticate directly with FXA so it can retrieve the keys
• Any other clients (e.g., your mobile browser) would also need to authenticate to FXA to retrieve the keys
• It will lock us into FXA as the only authentication backend

Like @Vinnl says - you can definitely disable the server-side storage of labels to be extra cautious until we have an end-to-end-encrypted solution in place.