Skip to content
Dmail promises self-destructing Gmail messages
Naked Security Naked Security

Dmail promises self-destructing Gmail messages

After an email has been "destroyed" (or, rather, encrypted), recipients will see a message that the email has been killed. Should we trust it will do what it says with personal data?

Dmail promises self-destructing Gmail messagesGoogle recently promoted its little-known “Undo Send” option for Gmail users: a feature that buys us up to 30 seconds in which we can stop the delivery of whatever e-embarrassment we concocted from escaping into the wild.

Thirty seconds? Bah! That’s barely enough time even if you can remember how to do it.

Enter what its developers promise will be a true email obliviator: Dmail, a “self-destructing” email service that lets a Gmail message sender revoke access to email at any time.

In an upcoming release that’s reportedly coming soon, you’ll also be able to stop recipients from forwarding your messages, as well.

The ability to revoke emails isn’t new, but such offerings have their limitations.

Microsoft Outlook users at a company that uses Exchange Server can recall emails, but you’re on your own when dealing with addresses outside the organization.

For its part, Gmail’s Undo Send feature, as noted, gives you a few seconds of recall time after hitting Send.

Given such limitations, the power to destroy an email anytime has appeal.

Dmail works via a Google Chrome web browser extension that only email senders – not recipients – have to install.

That means that anyone can read a Dmail, regardless of whether they’re a Gmail user or whether they’ve installed the plugin, unlike some other secure messaging products.

Recipients who don’t have the extension installed will get an email that states: “This secure message was sent using Dmail. To view this message, simply click the button below.”

Once you’ve installed Dmail, it will present you with a new option in the Gmail compose window that lets you send via Dmail.

Then, users can specify whether they want the email to be destroyed in an hour, a day, a week, or “never” – though even if you choose “never,” you can go back and click “Revoke Email” at any time to revoke recipients’ access to the email.

Clicking the included “View Message” button will direct recipients to a web view where they can read the sent email. If they’ve installed the plugin, they can view the message within Gmail.

After an email has been revoked, recipients who’ve installed the plugin will see a message that reads: “this message has been destroyed and is no longer available.”

Users who haven’t installed Dmail will see a similar “Message Unavailable” notice when they click on the “View Message” link.

Dmail says that it’s using a standard 256-bit encryption algorithm to encrypt its messages.

Dmail’s Eric Kuhn told Tech Crunch that when a user sends a Dmail, the body is encrypted locally on the user’s machine:

An encrypted copy of that email is sent to a datastore controlled by Dmail. The recipient of the email is sent both the location of that datastore, as well as a key to view the decrypted message.

Neither Gmail nor Dmail servers ever receive both the decryption key and encrypted message. Only the recipient and sender can read the email legibly.

Such a service has obvious appeal for plenty of people: for example, those who cheat on their partners and want to control incriminating messages and thereby escape the fate of Ashley Madison users, or corporations that don’t want to give attackers the chance to expose confidential information a la Sony.

Also, as Naked Security’s Paul Ducklin suggests, Dmail presumably avoids the problem of mails that otherwise lie around in the recipient’s inbox, where even if they assure you “they deleted it”, you still have to make a lot of assumptions.

(Was it already backed up into their personal backup? Saved into another folder where they forgot about it? Backed up on their corporate email server? Stored for 30 days as a “feature” by their webmail provider so they can still undelete it?)

But even if Dmail’s concept is enticing, the proof is in the pudding, and many reviewers on the Chrome web store are finding that this pudding hasn’t set.

Dmail has so far received a 3-star rating with 22 reviews. Some of the issues that reviewers say they’ve found:

Not working: Destroyed emails are still available (when accessing from your mobile device). False destruction is not destruction. FAKE SAFETY.

I tested app after 1hr I could not access the mail I sent but the recipient still could[.] I tried it again same thing

[I]t doesn't seem to be working at all. I have set a message to be destroyed in 1 hour and after over 12 hours it is still there for the recipient to read, though it says it has been destroyed on my end. Fix this and it will be 5 stars.

I’ve asked Dmail about these issues and will update the article if anybody gets back to me.

In the meantime, I’d suggest not expecting this app to reliably flash-encrypt anything in quick turn-around fashion, based on the reviews.

Also, take heed that attachments aren’t encrypted at all, though Kuhn says that a self-destructing function may be added to a paid, future version of the service that Dmail expects to launch before winter.

Dmail plans to expand beyond Gmail to other platforms, including Google Apps. A Dmail iOS application will launch in August, and an Android release will follow.

Image of self-destructing Gmail courtesy of Shutterstock.

4 Comments

I really don’t understand the concept behind this idea. Clearly anyone could copy and paste the email / print it / etc and it would be stored forever, and in a similar fashion they could forward the e-mail to whomever they like.

Unkike Snapchat, which seemed to start off in a sort of denial about what you might call “outside the app copying,” I don’t think the Dmail guys are claiming your recipients can’t make a usable copy of the content. (After all, their website includes screenshots of sample emails :-)

For emails between co-operating people, I can see how it might be handy – as long as you don’t use it for real secrets, but in those cases where you might otherwise say, “Don’t forget to delete this email after reading it,” just so it doesn’t lying around forever by mistake.

Let’s hope the Dmail guys take the trouble to discourage people from inferring that the project offers more secrecy than it does.

If it’s sent using google services they have full access and rights to the content and so does any government body that request it. Read the ULA to use google services/products. You own nothing, not one piece of content if used on their services.

Sure, but if the content goes *POOF*, what can they access? There’s really simple ways to do this with any type of e-mail if you have access to hosting services. If you want to send text to a friend that you don’t want to stick around for more than a few hours, you simple type your message in Paint, save it as an image, upload it on your FTP site, and insert a *link* to that image in your email. In a few hours, delete the image from your FTP site, and all the email says is, essentially, 404.

Comments are closed.

Subscribe to get the latest updates in your inbox.
Which categories are you interested in?