On Tue, Aug 13, 2013 at 1:35 AM, Percy Alpha <percyal...@gmail.com> wrote:
> @Tom, "For this amount of time your password is stored in encrypted > memory" but to actually use the key, the key has to be in plain-text form > for sometime, during which it can be (forced to )intercepted. > > If they can force Lavabit to intercept users' emails, why can't they ask > spideroak to secretly intercept users' moible app login? > They (or somebody else) can. So don't use mobile login. Curious why the regular client logic can't run on mobile. Too intensive to decrypt metadata maybe?
-- Liberationtech is a public list whose archives are searchable on Google. Violations of list guidelines will get you moderated: https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, change to digest, or change password by emailing moderator at compa...@stanford.edu.