The Autocrypt standard has been developed to provide an automatic email encryption. This is done as follows:
Each email sent includes the public key of the sender in the email header. This key will be imported automatically or manually by the recipient.
Autocrypt has the following limitiations:
There is no check for automatically imported keys to see whether they are correct or a fake.
For this reason, an automatically imported key is not used for verifying the sender's signature.
To manage Autocrypt keys and verify them later, you have the following options:
Parent topic: Encrypting Data with Guard