Why the poor uptake of encrypted email? [Was: Re: Secrets and cell phones.]
Dirk-Willem van Gulik
dirkx at webweaving.org
Tue Dec 9 02:18:59 EST 2008
On 8 Dec 2008, at 22:43, David G. Koontz wrote:
> JOHN GALT wrote:
>> StealthMonger wrote:
>>
>>> This may help to explain the poor uptake of encrypted email. It
>>> would
>>> be useful to know exactly what has been discovered. Can you provide
>>> references?
>>
>> The iconic Paper explaining this is "Why Johnny Can't Encrypt"
>> available
>> here: http://portal.acm.org/citation.cfm?id=1251435
>>
>
> Available from the Authors:
>
> http://gaudior.net/alma/johnny.pdf
A later follow up (s/mime; more focus on the KDC):
http://www.simson.net/clips/academic/2005.SOUPS.johnny2.pdf
is IMHO more interesting - as it explores a more realistic hostile
scenario, seems to pinpoint the core security issue better; and goes
to some length to evaluate remedial steps. And it does show that a
large swath of issues in PGP are indeed solvable/solved (now)
Thanks,
Dw
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list