@Tom, "For this amount of time your password is stored in encrypted memory" but to actually use the key, the key has to be in plain-text form for sometime, during which it can be (forced to )intercepted.
If they can force Lavabit to intercept users' emails, why can't they ask spideroak to secretly intercept users' moible app login?
-- Liberationtech is a public list whose archives are searchable on Google. Violations of list guidelines will get you moderated: https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe, change to digest, or change password by emailing moderator at compa...@stanford.edu.
