[liberationtech] "Securing Email Communications from Facebook" offering PGP support
Steve Weis
steveweis at gmail.com
Mon Jun 1 14:56:25 PDT 2015
Facebook is sending the email, so, yes they know the content of the
messages they are sending. Without encryption, third-party email
providers will also see that content. If the mail providers don't
support STARTTLS, contents may also be exposed in transit and exposed
to more parties.
Encrypting email with PGP helps protect contents so they aren't
exposed in transit or while stored with email providers. Personally, I
would like to have the option to receive encrypted email for all my
online services.
Incidentally, Google has some data on which domains support STARTTLS
if you're interested:
http://www.google.com/transparencyreport/saferemail/data/
On Mon, Jun 1, 2015 at 12:35 PM, Thomas Delrue <thomas at epistulae.net> wrote:
> On 06/01/2015 01:46 PM, Steve Weis wrote:
> > Hi Libtech. Facebook added support to put a PGP public key to your
> > profile and optionally use it to encrypt email notifications that are
> > sent to you:
> > https://www.facebook.com/notes/protect-the-graph/securing-email-communications-from-facebook/1611941762379302
>
> Forgive my ignorance but what is the point of this 'feature'?
> Wouldn't FB (and thus anyone able to coerce FB as well) still have the
> unencrypted data?
More information about the liberationtech
mailing list