[Cryptography] Google "End to End"
StealthMonger
StealthMonger at nym.mixmin.net
Fri Jun 6 20:28:44 EDT 2014
Dave Howe <davehowe.pentesting at gmail.com> writes:
> On 06/06/2014 06:46, Tom Mitchell wrote:
>> Google is putting a toe into the crypto world
>> for email.....
>> https://code.google.com/p/end-to-end/
> Looks like they are recreating https://www.mailvelope.com/ but with only
> one browser supported and less functionality....
The fatal flaw of mailvelope was that unfinished mail might be shared
with the server in plain text during edit -- something about the DOM[1].
Are you saying that google's end-to-end also has this flaw?
[1] https://tails.boum.org/doc/encryption_and_privacy/FireGPG_susceptible_to_devastating_attacks/
--
-- StealthMonger
Long, random latency is part of the price of Internet anonymity.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20140607/8cc5494f/attachment.sig>
More information about the cryptography
mailing list