[Cryptography] Any opinions on keybase.io?

Ray Dillinger bear at sonic.net
Thu Dec 18 13:08:35 EST 2014

On 12/15/2014 05:37 PM, Tony Arcieri wrote:

> Ideally encryption should be transparent to Johnny, and something Johnny's
> email provider can flip on transparent to him (unless he actually wants to
> knuckle down and dig into the crypto-details of what's going on behind the
> scenes)

Dude, that's just plain wrong.  Johnny's never going to be secure until
Johnny learns that he has to manage his own keys. If his email provider
can switch it on and off, his email provider will be *FORCED* to switch
it on and off based on the interests of someone who isn't Johnny.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20141218/93d61990/attachment.sig>

More information about the cryptography mailing list