Saturday, November 22, 2014

"Let's Encrypt" could make encryption of all web content routine by end of 2015


Electronic Frontier Foundation (with partners Mozilla, Akamai, Cisco, and IdenTrust) has announced that a new security certificate authority, “Let’s Encrypt”, to be “free, automated and open” will arrive in the summer of 2015.  It will use TLS (the successor to SSL) which it says every major browser uses now.  The main link is here
  
The new standard will make encryption much easier for the “novice” webmaster than the current procedure.
  
  
Again, a good question is whether a website that does not require users to log on (as my doaskdotell does not) needs encryption.  I’ve noticed more traffic in recent years from non-democratic countries, so certainly there is an issue for those visitors.  I’m far less convinced that the NSA really cares when an average American accesses information about, say, bitcoin, because there is simply an overwhelming amount of data to collate. 

A related ability, as recently noted, would be the capacity to encrypt email correspondence.  

No comments: