Linked by Thom Holwerda on Thu 21st Nov 2013 23:46 UTC
Internet & Networking

"We can end government censorship in a decade," Schmidt said during a speech in Washington. "The solution to government surveillance is to encrypt everything."

Setting aside the entertaining aspect of the source of said statement, I don't think encryption in and of itself is enough. Encryption performed by companies is useless, since we know by now that companies - US or otherwise - are more than eager to bend over backwards to please their governments.

What we need is encryption that we perform ourselves, so that neither governments nor companies are involved. I imagine some sort of box between your home network and the internet, that encrypts and decrypts everything, regardless of source or destination. This box obviously needs to run open source software, otherwise we'd be right back where we started.

Is something like that even possible?

Permalink for comment 577361
To read all comments associated with this story, please click here.
RE[2]: Comment by pcunite
by Lennie on Sat 23rd Nov 2013 09:28 UTC in reply to "RE: Comment by pcunite"
Lennie
Member since:
2007-09-22

Actually, there are multiple reasons:

There is the one you mentioned:
- certs signing takes time, knowledge and effort to get done. Certs are actually already free (!) or cheap (10 euros). You don't pay for the cert. You pay for that time and effort to talk to a CA.

But don't dismiss:
- SNI for HTTPS, no support in all browsers for virtual hostnames like for HTTP, so you need an IP-address per website (think about how we are running out of IPv4-addresses and the administrative overhead of configuring the server). Here you pay for configuration overhead and an IPv4-address.

Support for DNSSEC/DANE and SNI in browsers would help here.

Edited 2013-11-23 09:28 UTC

Reply Parent Score: 4