Comments on: Confidential Email http://www.moundalexis.com/tm/2009/08/13/confidential-email/ Rants and musings, without care for substance. Fri, 30 Jul 2010 20:08:28 +0000 http://wordpress.org/?v=2.6.5 By: Damien http://www.moundalexis.com/tm/2009/08/13/confidential-email/#comment-16876 Damien Fri, 14 Aug 2009 01:14:15 +0000 http://www.moundalexis.com/tm/?p=1018#comment-16876 You're doing a good job, and you like good food! Both are good reasons for me to keep coming back to your blog. You’re doing a good job, and you like good food! Both are good reasons for me to keep coming back to your blog.

]]> By: Alex http://www.moundalexis.com/tm/2009/08/13/confidential-email/#comment-16873 Alex Thu, 13 Aug 2009 19:27:16 +0000 http://www.moundalexis.com/tm/?p=1018#comment-16873 Steven: I still have my PGP key. Gave up on signing each message long ago, since no one I know ever uses it. Then I outsourced myself. Damien: I try to keep SNR from plummeting; part of the reason that people don't grasp the concepts is that it all works without a lot of effort, so there's no reason to learn more about the specifics. Steven: I still have my PGP key. Gave up on signing each message long ago, since no one I know ever uses it. Then I outsourced myself.

Damien: I try to keep SNR from plummeting; part of the reason that people don’t grasp the concepts is that it all works without a lot of effort, so there’s no reason to learn more about the specifics.

]]> By: Damien http://www.moundalexis.com/tm/2009/08/13/confidential-email/#comment-16872 Damien Thu, 13 Aug 2009 14:51:06 +0000 http://www.moundalexis.com/tm/?p=1018#comment-16872 I've been watching the banter on Slashdot myself and have thought about posting just such an analysis on that site, but I can't bring myself to try to inject signal in that noise. You are 100% correct that the real issue here is not using an outsourced mail system (in fact I'd be surprised if most law/doctor offices weren't already outsourcing - just not to Google) but rather using any electronic communicaiton system to transmit communications without using encryption. There are two issues, data in transit and data at rest, and most people just don't grasp either concept well enough to appreciate the real risks of unencrypted data communications as well as unencrypted data in storage. I’ve been watching the banter on Slashdot myself and have thought about posting just such an analysis on that site, but I can’t bring myself to try to inject signal in that noise.

You are 100% correct that the real issue here is not using an outsourced mail system (in fact I’d be surprised if most law/doctor offices weren’t already outsourcing - just not to Google) but rather using any electronic communicaiton system to transmit communications without using encryption.

There are two issues, data in transit and data at rest, and most people just don’t grasp either concept well enough to appreciate the real risks of unencrypted data communications as well as unencrypted data in storage.

]]> By: Steven http://www.moundalexis.com/tm/2009/08/13/confidential-email/#comment-16871 Steven Thu, 13 Aug 2009 13:43:21 +0000 http://www.moundalexis.com/tm/?p=1018#comment-16871 +1 - I couldn't agree more. I've got a PGP key setup and easily usable with my e-mail configuration, but I don't think anyone has ever bothered to use it to send me an encrypted message except the first time I set it up and asked someone to help me test it out. Ignorance + Laziness + Indifference = Security Failures. +1 - I couldn’t agree more. I’ve got a PGP key setup and easily usable with my e-mail configuration, but I don’t think anyone has ever bothered to use it to send me an encrypted message except the first time I set it up and asked someone to help me test it out.

Ignorance + Laziness + Indifference = Security Failures.

]]>