[Cryptography] FW: IAB Statement on Internet Confidentiality
Ray Dillinger
bear at sonic.net
Thu Nov 20 21:18:24 EST 2014
On 11/20/2014 01:55 PM, Jerry Leichter wrote:
> Not only does this list have a public archive, but it has open membership. Anyone wishing to "snoop" on it need merely join. Hello out there, NSA representative.
> [snip]
> (Perhaps we *should* enable encryption as a way of testing just how well - or, more likely, badly - existing solutions work. It might inspire someone on the list to do better.)
>
At the very least such a proposal would force us to confront the usability
and key management issues of the software and at least put us in a
position to become ware of its security interactions with various mail
plugins.
I'm agnostic on the matter though; I've never really felt the need to
encrypt, or sign, on this very public forum.
The 'Outlanders' list and similar venues are a different matter entirely,
but they are not open-subscription, the encryption they use is not
public-key, and obviously they do not have the usability and security
issues of a PKI to worry about.
Bear
More information about the cryptography
mailing list