Ben Laurie wrote:
The core issue with these "tradeoffs" is they are binary. You either have encryption, or you don't. The whole notion that there is a spectrum on which you can choose your place is flawed.
Right. MFA is not very meaningful because, so often, all the factors can be compromised by a single entity. As such, E2E encryption with a key shared through assumed-to-be-uncompromised CAs is not encryption. Masataka Ohta
