On 31/01/16 19:03, Dave Crocker wrote: > > On 1/31/2016 10:53 AM, Stephen Farrell wrote: >> Given that much >> SMTP is now transmitted over TLS, I think the opportunity >> for the likes of NSA to record all the PGP ciphertext has >> to be have been significantly diminished. > > > This depends on the degree of cooperation they get from operators, since > TLS is only for one hop and the messages is in the clear at any > SMTP-level transit points.
Sure. OTOH, it also means that the PGP ciphertext can no longer be as easily extracted from almost any network tap, which used be the case. And (absent an attacker) doesn't most mail these days only tend to transit the public Internet in one hop? My point is not that the current situation is perfect (it is not) but that it is improving and vastly improved on what we had deployed that got used 3 years ago. (IOW, I'm an optimist but hopefully not a fansasticist:-) S. > > d/ > > _______________________________________________ > perpass mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/perpass > _______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
