On 8/4/22 2:24 AM, Taavi Eomäe via mailop wrote:
Nobody (and rightfully so) displays transport encryption as secure, which invalidates the original premise of someone being lied to in the first place.
I question the veracity of that.Gmail has a "security" line in the drop down which shows more information about the sender, recipients, etc. I have many messages in a mailbox that state:
security: Standard encryption (TLS) Learn more With a padlock icon in front of Standard and Learn more being a link.So there is some amount of information being surfaced to user -- if they know where to look -- indicating that the message is secure.
This is also conceptually similar to people describing web sites as secure because they have the padlock in the address bar. This is usually erroneously extrapolated as being safe to visit. Yet malware and viruses distributed by such secure ~> safe sites are anything but safe to visit. -- I consider this to be a questionable UI / UX / training / conditioning problem more than I consider it to be a technological problem. -- In some ways I feel like some of, if not much of, the spirit of this -- hijacked -- (sub)thread suffers from the same thing.
-- Grant. . . . unix || die
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
