NPR : E-Mail Encryption Rare in Everyday Use

James A. Donald jamesd at echeque.com
Thu Mar 9 17:09:56 EST 2006 

     --
Victor Duchovni wrote:
 > My claim is that, while indeed it is easier to set the initial
 > barriers higher when you design with greater hindsight, and some of
 > the tractable, but not widely deployed email security measures will
 > be there in IM systems from the start, never the less IM systems if
 > they are to encroach on the ubiquity of email for ad-hoc
 > communications between strangers (it is far easier to address
 > strangers via email today) will encounter exactly the same intrinsic
 > issues, and that technical measures will have equally partial
 > efficacy.

Total perfect and complete solutions will never be possible, but
stopping the most flagrant and inconvenient abuses is perfectly
feasible, and not even remarkably difficult.  These days you see
little spam on most Usenet groups, and one of the primary uses of
Usenet is ad hoc communication between strangers.

SSL works fine, PKI has serious problems. Usenet for the most part
works fine, Jabber works fine, email has serious problems

The federated structure of jabber, where random people connect to any
one of a very large number of privileged servers is similar to the
Usenet structure - and the Usenet structure works because for your
server to retain your privileges, you need to control spam.

 > I am willing to speculate that people will continue to unfairly
 > tarnish the competence of the email RFC writers, without regard to
 > the intrinsic properties of the medium.

It is not so much that they were incompetent, but that they were
writing for a more trusting and trustworthy world.  Today, we have to
do things differently.

     --digsig
          James A. Donald
      6YeGpsZR+nOTh/cGwvITnSR3TdzclVpR0+pr3YYQdkG
      PRRq2Za8iG5qzD2wX3ug3xGXEWyekUqHQTZAspUQ
      4Mjw8nFOqtf9erylBgQZo+5aUTVPzgKVdij0TQUDs

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com

More information about the cryptography mailing list