[Cryptography] Dark Mail Alliance specs?

Jon Callas jon at callas.org
Tue Apr 1 09:09:07 EDT 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On Mar 28, 2014, at 4:50 AM, Ben Laurie <benl at google.com> wrote:

> On 27 March 2014 14:01, Jon Callas <jon at callas.org> wrote:
>> I wrote the original encryption guidelines back in '09, and I put in things like a statement that if data in the cloud is not end-to-end encrypted, then it should be considered lost (which is a significant thing, as that triggers breach disclosure notifications). I was impressed that I got backing on that.
> 
> Uhuh. And has there even been a breach disclosure notification?

Probably not. It was a political and policy statement, and one where people are now going back post-Snowden and pointing out that they were warned ages ago.

Do I expect them to mend their ways? Nope. Quite the opposite. But you don't get to say "I told you so" or "you were warned" if you don't tell them so or warn them.

	Jon



-----BEGIN PGP SIGNATURE-----
Version: PGP Universal 3.2.0 (Build 1672)
Charset: us-ascii

wj8DBQFTOrp7sTedWZOD3gYRAizmAJsEWUgSc3d6eLdlbCpQbnkSfv5XQwCeLGUV
tDFpTqX8toyktvzSwn64uc8=
=jhTx
-----END PGP SIGNATURE-----


More information about the cryptography mailing list