It seems that email is a very very unsafe mode of communication. Although I don't have any world domination plans as yet, I would like to keep my things private from intruding governments as well as companies.
I've been looking a bit around and it seems that there is a lot possible, but that it's just very fragmented; GPG and FireGPG together with some extra functionalities would help us get started.
What if you created one package out of Seahorse/GPA/KGPG and FireGPG which after installation had the following functionalities for for example gmail (more email programs should follow);
- The first time you start it up, a key-pair is being made for your email address. The public key is automatically uploaded to the PGP Global Directory which then verifies the email adres with a verification email.
- When you send an email it automatically looks in the Global Directory whether the person you send the email has a public key and if it finds one, it automatically encrypts and sends the message. Also it automatically signs the email using your private key.
- When you receive an encrypted message, it automatically unencrypts it and checks the signatures using the Global Directory.
Using a system like this would get many people to use it since it is not so complicated anymore and just one package. The more people post public keys, the more it gets accepted by other email programs while it doesn't interrupt the current flow of emails since you can still send normal emails as well.
If you think intruding governments are taking a bit too much away from our privacy these days, please vote UP!
Links:
http://www.getfiregpg.org/
http://www.gnome.org/projects/seahorse/
http://www.gnupg.org/gpa.html
http://utils.kde.org/projects/kgpg/
For Dutch readers a thread in which we discussed things:
http://forum.fok.nl/topic/1203205
