<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Sat, Jul 26, 2014 at 8:03 AM, Lodewijk andré de la porte <span dir="ltr"><<a href="mailto:l@odewijk.nl" target="_blank">l@odewijk.nl</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><a href="http://matasano.com/articles/javascript-cryptography/" target="_blank">http://matasano.com/articles/javascript-cryptography/</a><div>
<br></div></div></blockquote><div><br></div><div>Interesting... </div><div>I think all of his points and issues are worth researching</div><div>but he misses one important bit --- </div><div><br></div><div> * Browser based email is the current game of choice and any improvement is important.</div>
<div><br></div><div>For Google and most others POP and IMAP are a key</div><div>part of the landscape and can remove the browser and </div><div>JS from the mix.</div><div><br></div><div>For phones the browser is commonly replaced with an application</div>
<div>again removing JS from the customer side of actions.</div><div><br></div><div>These all imply interoperability with any browser based tool set</div><div>which also implies that non-browser traffic flowing through the service</div>
<div>should be identical to any third party pair of eyes.</div><div><br></div><div> B=Browser</div><div> A=Application</div><div> C=Classic Mail</div><div> etc...</div><div><br></div><div> A <=m=> A</div><div> A <=m=> B</div>
<div> B <=m=> B</div><div> ....</div><div> C <=m=> C</div><div> etc...</div><div><br></div><div>This interoperability matrix makes it moderately possible</div><div>to ignore his objections for the vast majority. The others</div>
<div>can elect to not use browser based tools. The =m= is</div><div>a man in the middle. Does this observer see anything </div><div>interesting and different?</div><div><br></div><div>One interesting permutation is <=g=> with Google in the middle</div>
<div> Ag <=g=> Ag</div><div>Google application to Google application all contained inside</div><div>of Google.</div><div><br></div><div> An <=+=> An </div><div>This might be an Application authored by the NSA connection to </div>
<div>a paired application also by NSA with any number (+) onlookers in the middle.</div><div><br></div><div><br></div></div><br><br clear="all"><div><br></div>-- <br><div dir="ltr"> T o m M i t c h e l l</div>
</div></div>