On 1/1/22 12:25 PM, Theodore Ts'o wrote:
There are (multiple) mail encryption extensions to SMTP. Hop-by-hop using TLS, end-to-end encryption/authentication using S/MIME, end-to-end encryption/authentication using PGP, etc. Major MSP have adopted some of these already (TLS and S/MIME integrity protection are used by GMail, for example).
Fair point, but as you pointed out there are lots of gaps in the current support. We can probably significantly reduce the number of gaps but not to zero.
And of course there are also a lot of proprietary encrypted messaging solutions that don't interact with SMTP at all, making the users' view of messaging much more fragmented than it needs to be. And most of those systems are profoundly dysfunctional when compared to SMTP.
Keith
