E2E security for popular web services

Abstract

With the ever growing number of data breaches on servers, its now more important than ever to secure sensitive information in a way that only intended parties can decrypt/understand the message even if data itself is compromised. This is specially true for government agencies and officials, who have always remained main target for attackers. Government Officials are however not the only intended recipients. Shar ing business secrets and confidential messages is also a challenge using email as medium. We intend to create an open system which can be easily adopted by masses and can ensure complete confidentiality of data as well as user identities. Our work will provide end to end encryption for emails. On top of that, sender/receiver identity will also remain hidden from email client. Only the sender and receiver will know who sent and who received. No one else! To achieve this, we created a client side application which encrypts email on client side and forward emails in a tor like way to hide sender receiver pair. Gmail is the most famous email client with 1.2 billion users and therefore we created our application to extend Gmail functionalities to include more privacy.