On Fri, 21 Mar 2014 06:00:04 -0700 Nicholas wrote: NW> > Even if an email goes from my browser to Google's servers over https, NW> > and goes between Google's servers over https, I did not see a NW> > commitment to encryption of the email when it is at rest, rather than NW> > in motion... NW> NW> To reply with the obvious: It is IMPOSSIBLE to secure data at rest in NW> the context of a webmail system: server control can always enable NW> accessing of all documents when the user logs in to check their webmail.
Unless the client does the decryption locally... If gmail offered this option, I'm sure browser plugin writers would meet the challenge quickly.. Robert -- Senior Software Engineer @ Parsons
signature.asc
Description: PGP signature
_______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
