undefined | Better HN

0 pointsleot12y ago0 comments

I'm not talking about deploying/using PGP to be secure from gov't (or Gmail) monitoring. I'm talking its use in the context of 99% of normal interactions online. Yes, we wouldn't have tinfoil-hat-level security if it was managed by Gmail, Yahoo, etc. But we'd be lightyears further ahead in our ability to interact securely with others online.

0 comments

6d0debc07112y ago

Okay, I'll bite for that - what's your threat scenario here?

leotOP12y ago

These aren't threat scenarios. They're advantages to having PGP

Eliminate most spam. Talk with your bank/do trades over email. Talk with your physician. Sign documents.

With webmail-based PGP, people are strongly incentivized to use this to avoid requiring users to sign in to other websites.

6d0debc07112y ago

I don't think having to sign into other websites is that much of a bother, nor that people are that motivated to talk to their bank or physician on a regular basis that would drive adoption of this sort of thing.

And in return you have to stick all your eggs in one basket, get what would probably end up being a single persistent online identity that goes under your real name (if it's tied to an email address you use for business stuff), and that's owned by a company and may not even be willing to give them back to you (would you even own the private keys if it was being implemented on the server?)

1 more reply

j / k navigate · click thread line to collapse

0 pointsleot12y ago0 comments

0 comments

6d0debc07112y ago

Okay, I'll bite for that - what's your threat scenario here?

leotOP12y ago

These aren't threat scenarios. They're advantages to having PGP

Eliminate most spam. Talk with your bank/do trades over email. Talk with your physician. Sign documents.

With webmail-based PGP, people are strongly incentivized to use this to avoid requiring users to sign in to other websites.

6d0debc07112y ago

1 more reply

j / k navigate · click thread line to collapse