Linked by Thom Holwerda on Thu 21st Nov 2013 23:46 UTC
Internet & Networking

"We can end government censorship in a decade," Schmidt said during a speech in Washington. "The solution to government surveillance is to encrypt everything."

Setting aside the entertaining aspect of the source of said statement, I don't think encryption in and of itself is enough. Encryption performed by companies is useless, since we know by now that companies - US or otherwise - are more than eager to bend over backwards to please their governments.

What we need is encryption that we perform ourselves, so that neither governments nor companies are involved. I imagine some sort of box between your home network and the internet, that encrypts and decrypts everything, regardless of source or destination. This box obviously needs to run open source software, otherwise we'd be right back where we started.

Is something like that even possible?

Thread beginning with comment 577257
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: Comment by pcunite
by WereCatf on Fri 22nd Nov 2013 02:14 UTC in reply to "Comment by pcunite"
WereCatf
Member since:
2006-02-15

Allow me to create and use my own.


What's stopping you? I've been using my own ones for ages, you just accept the certificate in your browser and go on your merry way.

Reply Parent Score: 4

RE[2]: Comment by pcunite
by Soulbender on Fri 22nd Nov 2013 05:55 in reply to "RE: Comment by pcunite"
Soulbender Member since:
2005-08-18

I think he mean that if you use a self-signed certificate on your site all your visitors get the rather scary browser warning.

Reply Parent Score: 3

RE[3]: Comment by pcunite
by WereCatf on Fri 22nd Nov 2013 06:28 in reply to "RE[2]: Comment by pcunite"
WereCatf Member since:
2006-02-15

I think he mean that if you use a self-signed certificate on your site all your visitors get the rather scary browser warning.


If that's what he means, well, there's just no workaround for that. I mean, he could get a certificate that's signed by one of the CAs and then his visitors wouldn't get the warning, but then it wouldn't be self-signed. And on the other hand, if browsers just accepted self-signed certificates the whole point with certificates would've just been rendered moot; you can't have your cake and eat it.

Reply Parent Score: 3