To pick the obvious nit... Even if an email goes from my browser to Google's servers over https, and goes between Google's servers over https, I did not see a commitment to encryption of the email when it is at rest, rather than in motion...
R Robin Wilton Technical Outreach Director - Identity and Privacy Internet Society email: [email protected] Phone: +44 705 005 2931 Twitter: @futureidentity On 21 Mar 2014, at 05:21, Pranesh Prakash wrote: > Dear all, > Since 2010 Gmail's web interface has been HTTPS by default, but today Google > announced that they will be disabling the option to make it HTTP: > > http://goo.gl/OqKveO > > And they also note: > >> In addition, every single email message you send or receive—100% of them—is >> encrypted while moving internally. This ensures that your messages are safe >> not only when they move between you and Gmail's servers, but also as they >> move between Google's data centers—something we made a top priority after >> last summer’s revelations. > > Regards, > Pranesh > > -- > Pranesh Prakash > Policy Director, Centre for Internet and Society > T: +91 80 40926283 | W: http://cis-india.org > ------------------- > Access to Knowledge Fellow, Information Society Project, Yale Law School > M: +1 520 314 7147 | W: http://yaleisp.org > PGP ID: 0x1D5C5F07 | Twitter: https://twitter.com/pranesh_prakash > > _______________________________________________ > perpass mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/perpass
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
