[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Forward Secrecy



Check your preferences are set.
Somehow I bet there will be a move to this rather soon.
Yet note, Dec, a provider simply logging the session keys is still possible.
Though much costlier for evil pursue that cheap route if there are lots
of small mail providers out there for people to use... who says
you have to use the big three, or cannot run a mail service?
Or a distributed social / call / sharing platform, etc?
Next topic, DHT p2p tech... we are 'always on' right?

http://news.cnet.com/8301-13578_3-57595202-38/feds-put-heat-on-web-firms-for-master-encryption-keys/
http://news.cnet.com/8301-13578_3-57591179-38/data-meet-spies-the-unfinished-state-of-web-crypto/
http://googleonlinesecurity.blogspot.com/2011/11/protecting-data-for-long-term-with.html
http://vincent.bernat.im/en/blog/2011-ssl-perfect-forward-secrecy.html
http://nmav.gnutls.org/2011/12/price-to-pay-for-perfect-forward.html