Connection is Not Secure Warning

You are probably safe

ProtonMail is secure and your data is safe. Sometimes your browser may show you a warning (the exact message depends on the browser you use) that says something along the lines of “Connection is Not Secure”. This can happen for a variety of reasons but the most common one is due to loading an email with insecure images.

Most emails today contain images. ProtonMail uses SSL/HTTPS to secure your data, but some emails can load images using plain HTTP. The following code is an example of such an email:

Hello there,
We have a new promotion:
<img src="http://site.com/promo.jpg">
Check it out!

Because ProtonMail is secure with HTTPS and the image is loaded using HTTP the browser warns you that not 100% of the page is secure.

The solution

For now there’s not much you can do to avoid these warnings aside from not loading any images at all. A permanent solution is for ProtonMail to host all images, but this requires some significant effort in order to keep your data end-to-end encrypted and won’t be coming out in 2016.

You can read more about this warning message in the following technical article:
http://webmasters.stackexchange.com/questions/87987/https-connection-is-not-safe-due-to-images

 

Rare cases

The other reason why you would get this message is if our SSL certificate is compromised (although this has never happened and is unlikely since it requires the Swiss government to actively participate in such an attack). The warning message you get from your browser should detail the cause. If you’re worried about such a case, you can always contact our security team for help.

Rate This Article

(8 out of 13 people found this article helpful)
Post Comment

1 comments

  1. Nicole Marchand

    There is another source that I know; it is the all seeing force! Oh and did I mention that God is a woman?! I don’t need an agent, and guess how many stars had to align for me to write this????

Leave A Comment?