MT @jonathanmayer Lavabit's email architecture shows company routinely held plaintext & keys. http://highscalability.com/blog/2013/8/13 @emptywheel @JoeBeOne
-
-
Replying to @RachelBLevinson
@RachelBLevinson@jonathanmayer@emptywheel not if this is true: http://web.archive.org/web/20130530023856/http://lavabit.com/secure.html …1 reply 0 retweets 0 likes -
Replying to @JoeBeOne
@JoeBeOne@RachelBLevinson@emptywheel Read the design closely. Incoming/outgoing email = plaintext. Login = key + plaintext.1 reply 0 retweets 0 likes -
Replying to @jonathanmayer
@jonathanmayer@RachelBLevinson@emptywheel sure, they don't claim e2e, but storage security. decrypted private key in memory during login.2 replies 0 retweets 0 likes
Replying to @JoeBeOne
@JoeBeOne He told @kashhill that if "could intercept comm bt servers & user could get password" @jonathanmayer @RachelBLevinson
8:25 AM - 14 Aug 2013
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.