When a message comes in unencrypted, a very obvious warning is given:
Received plaintext message! Your next message will still be encrypted!
Brent: **Unencrypted** lol
But when an encrypted messages comes from an untrusted source, it looks just like any other message. This is a major security weakness because any message could be coming from an untrusted source and you would never know. It is just as important to warn the user in this case as in the case of an unencrypted message. There should be similar warnings for untrusted messages:
Received encryped message from an untrusted source! Your messages cannot be decrypted by this recipient!
Brent: **Untrusted** lol
When a message comes in unencrypted, a very obvious warning is given:
But when an encrypted messages comes from an untrusted source, it looks just like any other message. This is a major security weakness because any message could be coming from an untrusted source and you would never know. It is just as important to warn the user in this case as in the case of an unencrypted message. There should be similar warnings for untrusted messages: