this post was submitted on 10 Jan 2024
12 points (92.9% liked)

Proton

5315 readers
3 users here now

Empowering you to choose a better internet where privacy is the default. Protect yourself online with Proton Mail, Proton VPN, Proton Calendar, Proton Drive. Proton Pass and SimpleLogin.

Proton Mail is the world's largest secure email provider. Swiss, end-to-end encrypted, private, and free.

Proton VPN is the world’s only open-source, publicly audited, unlimited and free VPN. Swiss-based, no-ads, and no-logs.

Proton Calendar is the world's first end-to-end encrypted calendar that allows you to keep your life private.

Proton Drive is a free end-to-end encrypted cloud storage that allows you to securely backup and share your files. It's open source, publicly audited, and Swiss-based.

Proton Pass Proton Pass is a free and open-source password manager which brings a higher level of security with rigorous end-to-end encryption of all data (including usernames, URLs, notes, and more) and email alias support.

SimpleLogin lets you send and receive emails anonymously via easily-generated unique email aliases.

founded 1 year ago
MODERATORS
 

@protonprivacy Any plans to tackle identity? For SSO purposes I’m stuck with say, google but would love to move over to proton.

all 7 comments
sorted by: hot top controversial new old
[–] EmperorHenry@infosec.pub 2 points 10 months ago (1 children)

You mean like something to compete with services like DeleteMe, Incogni and Aura?

I'd be down for that, I'd like it to be included with proton family, that would give me a good reason to bite the bullet and pay the extra money for it.

[–] rhymepurple@lemmy.ml 4 points 10 months ago

I think that @theomegabit@infosec.exchange is asking for Proton to become an OAuth/OIDC provider. This would allow you to sign into any service, app, platform, etc. that supports it using your Proton account. Some common providers that are widely supported are Google, Apple, Github, Facebook, and Microsoft.

It is generally considered more secure than using "regular credentials" like username/email and password when using several services. There are a few downsides to this though. One of those downsides is that your OAuth/OIDC provider will have record of all your accounts used through OAuth/OIDC. For example, @theomegabit@infosec.exchange would like to avoid Google knowing about the various services used.

[–] dazo@infosec.exchange 2 points 10 months ago
[–] joe@toot.works 1 points 10 months ago