Enigmail / Bugs / #799 [Usability] Warning on private keys is hard to understand.

#799 [Usability] Warning on private keys is hard to understand.

Status: fixed

Owner: nobody

Labels: None

Found in Version: 2.0.1

Severity: Minor

Thunderbird version: 52.7.0

GnuPG version: 2.1.8 (Debian)

Operating System: Linux

Fixed in version: 2.1

Cc: nobody

Updated: 2020-12-25

Created: 2018-04-05

Creator: Yanosz

Private: No

Hello,

note: this report contains screenshots - please use the web-interface, if they're not shown in your eMail setup.

After upgrading to enigmail 2.0, a warning on private keys pops up.

The text is cut off. After resizing, the full dialog is:

Here, thunderbird is showing a dialog about non-trusted private keys. Having created all keys by myself and not being aware of any compromise, I see these usability issues:

The Level appears to be info (blue "i", no yellow "!"), although the message looks serious
I don't see why these keys are classified as non-trusted. Are they compromised?
Did upgrading enigmal screw sth. up? Were they trusted before?
There's a checkbox for not showing the dialog anymore. If its safe, to check this box, why does it pop up in the first place? If its not safe to do so, why is it there? What's the security / privacy impact on checking this box?
The box suggests to mark these keys as trustful. Why doesn't this happen automatically? What's the point for having the user's consent?
The dialog recommends to set "verlassen Sie sich auf die Zertifikate", but there's no option / link / button to do so.
The dialogs allows to open the key management dialog, but this appears to be a dead end. There's no "verlassen Sie sich auf die Zertifikate" button directly visible.

Trying to be constructive:

If there's an actual issue with these keys, suggest revoking 'em. If not, showing that these keys cannot be trusted is misleading.
In this dialog, the user has two options 1) establish trust, 2) hide the dialog forever. Novice users need some support in making this decision and in establishing trust if needed.
If "verlassen Sie sich auf die Zertifikate" is a reasonable default, then a marked checkbox could support applying this. Here, the user should be informed on negative side-effects and harmful secenarios.
As far as I understand, this info happens to due gpg having no owner trust level defined for these keys. The actual consequence is, that these keys cannot be used for designing and may be imported maliciously

HTH,
Greetz, yansz

Patrick Brunschwig - 2020-12-25

status: open --> fixed

Fixed in version: --- --> 2.1
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

[Usability] Warning on private keys is hard to understand.

OpenPGP addon for Mozilla Thunderbird

Searches

Help

#799 [Usability] Warning on private keys is hard to understand.

Related

Discussion